lawreview.richmond.edu

- University of Richmond -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number aa:e5:5a:29:3b:4b:3a:2f:b9:37:7b:92:0b:48:ef:2c was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of Richmond

Organization: University of Richmond
Organization unit: IS
Address: 28 Westhampton Way
Postal code: 23173
State / Province: Virginia
Locality: Richmond
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): aa:e5:5a:29:3b:4b:3a:2f:b9:37:7b:92:0b:48:ef:2c
Serial Number (int): 227159623947609725449286386529524576044
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 05:af:4e:40:61:4f:45:8f:44:3a:ff:dc:62:5a:c4:23:29:79:5b:0e
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 7d:8c:3e:cf:b6:85:e1:be:a6:77:28:02:c7:42:d8:30:9a:20:d1:66
Fingerprint (sha256): 00:30:72:54:31:e5:e4:80:7e:cc:38:2d:37:ce:23:6f:d5:a7:1f:67:5f:83:ea:89:aa:49:a1:89:0f:53:3a:6f

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate lawreview.richmond.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for lawreview.richmond.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

lawreview.richmond.edu

Other certificates including the domain name richmond.edu

(limited to 100 certificates)
smtp.richmond.edu
lawreview.richmond.edu
ems.richmond.edu
codingbootcamp.richmond.edu
collegian.richmond.edu
spiderchallenge.richmond.edu
cygnet.richmond.edu
connect.richmond.edu
spdr-rw.richmond.edu
blackboard.richmond.edu
md.richmond.edu
spidertechnet.richmond.edu
www.lawinfo.richmond.edu
lawreview.richmond.edu
spdr-vm.richmond.edu
king.richmond.edu
blog.richmond.edu
onecardweb.richmond.edu
effect.richmond.edu
libguides.richmond.edu
connect.richmond.edu
secure-usea1-1.tessituranetwork.com
bootcamps.richmond.edu
spidertechhub.richmond.edu
webapps.richmond.edu
webapps.richmond.edu
collegian.richmond.edu
spidergiving.richmond.edu
sorry.richmond.edu
masterplan.richmond.edu
avs-ess-sessmgr-sm100.richmond.edu
cassini.richmond.edu
secure-usea1-1.tessituranetwork.com
bishop.richmond.edu
askboatwright.richmond.edu
secure-usea1-1.tessituranetwork.com
*.richmond.edu
dsl.richmond.edu
libsystest2.richmond.edu
libcal.richmond.edu
secure-usea1-1.tessituranetwork.com
www.student.richmond.edu
secure-usea1-1.tessituranetwork.com
idp.richmond.edu
lawreview.richmond.edu
effect.richmond.edu
jerkshistory.richmond.edu
emstest.richmond.edu
policy.richmond.edu
archives.richmond.edu
sprd-vm.richmond.edu
securessl-est1.tessituranetworkhost.com
dsl.richmond.edu
secure-usea1-1.tessituranetwork.com
websecure.richmond.edu
libcal.richmond.edu
xblog.richmond.edu
testapp.richmond.edu
secure-usea1-1.tessituranetwork.com
webpass.richmond.edu
secure-usea1-1.tessituranetwork.com
secure-usea1-1.tessituranetwork.com
tickets.modlin.richmond.edu
collegian.richmond.edu
codingbootcamp.richmond.edu
xemq20u1.richmond.edu
emstest.richmond.edu
securessl-est1.tessituranetworkhost.com
avs-cma.richmond.edu
scholarship.richmond.edu
testforms.richmond.edu
exchangemail.richmond.edu
sailaway.richmond.edu
richmond.edu
bannerweb.richmond.edu
codingbootcamp.richmond.edu
xeadmu.richmond.edu
scholarship.richmond.edu
collegian.richmond.edu
secure-usea1-1.tessituranetwork.com
askboatwright.richmond.edu
securessl-est1.tessituranetworkhost.com
asords24p.richmond.edu
secure-usea1-1.tessituranetwork.com
spdr-cms.richmond.edu
collegian.richmond.edu
urhere.richmond.edu
idp.richmond.edu
secure-usea1-1.tessituranetwork.com
xess19u1.richmond.edu
avs-ric-avp2.richmond.edu
helping.richmond.edu
upgradeweb.richmond.edu
*.coursedog.com
bootcamps.richmond.edu
xemc20u1.richmond.edu
libcal.richmond.edu
avs-ess-avp.richmond.edu
metcalf.richmond.edu
wwws.richmond.edu

Certificate

The complete raw certificate details for lawreview.richmond.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrMfegEuJC65xqNwjH6/
THpwVgnKjauivZ9oWs52UyiOrrPhYTpSOa+RBqiTrG3WIqbDezLIw63YJBJdVXSz
WGHrf2SGzBQlw4p1Jf73Y5o+a1YXxdQcEXrTdOwbY2VKlvEq7abVdRu0A0PmL8WP
pLVTqkJgVPzfafeFRoYXKRYAZq0MET1DV1f2+eIaCXrQCsOGRqOhuVPKkMqw5Xiq
/5IJHaykei0ZjfkOqwwA5mQSHEaOcHGk533L5pyby9hdNXhOJO3dFwX5gGCzY6Zy
DaAzEivbD4l/IiNSxX7+NsS2tgAXkyAeGc7m1UpZrKFY1obVzKWDtwlyUAZqbmI0
YwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 227159623947609725449286386529524576044
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-04 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-04 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '23173'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Richmond'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '28 Westhampton Way'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Richmond'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lawreview.richmond.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25083513204643960504578374861727609254265525652401642550068596616550680208285844855331910548514901063170672136107743064703051464295446978781143001321253181124824128976102634265204150346816886051245858894003292922554813756275352851681457181184679494607645191138492540944174342068168411639379292314434323509973926341160263153007134050227526342861281231590238619726891933346922224628133622317344840443996447338872851908421407204653458147013983243680799456915914513597583157651928890635466113321911091876562282094948436943276817534256952796934997189505641864225016118571807420915743659451149438508224651890449418683561059
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							05af4e40614f458f443affdc625ac42329795b0e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lawreview.richmond.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN asn1: syntax error: invalid boolean
false
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:30|false]  
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 56253618307757752804034347108694412258045821930865297987702901303737409785183
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 87524205841980401388919520019634882880479224232862897273844403592100524520423
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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