cryoem.ucla.edu
- University of California, Los Angeles -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number a7:64:cf:c2:5c:b1:75:b3:91:8b:aa:9d:87:11:84:b0 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of California, Los Angeles
Organization:
University of California, Los Angeles
Organization unit: David Geffen School of Medicine, DGIT
Organization unit: David Geffen School of Medicine, DGIT
Address:
405 Hilgard Avenue
Postal code: 90095
State / Province: California
Locality: Los Angeles
Country: US
Postal code: 90095
State / Province: California
Locality: Los Angeles
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): a7:64:cf:c2:5c:b1:75:b3:91:8b:aa:9d:87:11:84:b0Serial Number (int): 222504518839673073803816963308199707824
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 25:cf:57:25:1d:8b:08:a4:f8:f3:68:c8:67:91:e8:c2:b1:66:6f:cf
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 32:e1:b9:fb:30:82:e8:3d:c9:07:08:cd:00:48:0d:58:ab:51:29:50
Fingerprint (sha256): 00:31:ea:62:85:57:25:22:72:e2:a2:fc:4c:be:8b:38:fa:24:f1:ab:19:d2:c9:55:86:4d:01:a7:64:d9:92:ab
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate cryoem.ucla.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cryoem.ucla.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cryoem.ucla.edu
Other certificates including the domain name ucla.edu
(limited to 100 certificates)
iuc.publicaffairs.ucla.edu
luskin.cmfe-asm-01.noc.ucla.edu
scandinavian.ucla.edu
pcard.finance.ucla.edu
pods5-stage.mednet.ucla.edu
lasr.cs.ucla.edu
archivematica.library.ucla.edu
cryoem.ucla.edu
*.genetics.ucla.edu
www.ampersand.gseis.ucla.edu
sait-api-qaa.uclanet.ucla.edu
bruinpost.ucla.edu
giving.ucla.edu
trs.it.ucla.edu
test.int.maximo.ucla.edu
stage4.my.ucla.edu
collie.ats.ucla.edu
gpsslvpn.mednet.ucla.edu
greenfieldlab.psych.ucla.edu
5690449683546112-fe3.pantheonsite.io
www.cal.cs.ucla.edu
npc.cnsi.ucla.edu
patstest.research.ucla.edu
sites.anderson.ucla.edu
sni.cloudflaressl.com
tls.automattic.com
lsdapimdb01.medctr.ucla.edu
info-smtp-asm-01.noc.ucla.edu
cluster3.technolutions.net
mbi.ucla.edu
www.biolchem.ucla.edu
portal.research.ucla.edu
www.predictiontechnology.ucla.edu
intercampus.genetics.ucla.edu
cores.ee.ucla.edu
5729623769874432-fe3.pantheonsite.io
velosws1.ad.medctr.ucla.edu
buddhistbodies.humspace.ucla.edu
ergonomics.ucla.edu
epss.ucla.edu
sni.cloudflaressl.com
*.sistat.ucla.edu
labschool.ucla.edu
accounts-test.iam.ucla.edu
webapps.ccnet.ucla.edu
fsus-6.freshservice.com
osf.ucla.edu
www.botgard.ucla.edu
fspos.asucla.ucla.edu
npc.cnsi.ucla.edu
hss.semel.ucla.edu
voteview.polisci.ucla.edu
risksciences.ucla.edu
lucian.humspace.ucla.edu
laes.neurology.ucla.edu
webmail2.seas.ucla.edu
milken.music.ucla.edu
pams.research.ucla.edu
vmw-asm-04.noc.ucla.edu
sinai.library.ucla.edu
hue.humspace.ucla.edu
drugdiscovery.neurology.ucla.edu
anthro.ucla.edu
zhoulab.cass.idre.ucla.edu
giveto.ucla.edu
gseis.ucla.edu
fsapi.it.ucla.edu
channel.hammer.ucla.edu
video.law.ucla.edu
transitwiki.org
5735088218177536-fe1.pantheonsite.io
orisapps.research.ucla.edu
www.interactions.gseis.ucla.edu
barbernas.eeb.ucla.edu
nospam9.ad.ucla.edu
alb-p05.medschool.ucla.edu
ids.mednet.ucla.edu
colossus.cdh.ucla.edu
transportation.ucla.edu
pats.resadmin.ucla.edu
alumni.anderson.ucla.edu
partnershipschools.gseis.ucla.edu
server99b.dent.ucla.edu
nano.ucla.edu
lasik.ucla.edu
gsc1.bisp.ucla.edu
scai.cs.ucla.edu
www.bol.ucla.edu
ecr.idre.ucla.edu
deblab.med.ucla.edu
president.usac.ucla.edu
www.botgard.ucla.edu
5659974608879616-fe3.pantheonsite.io
www.admission.ucla.edu
hci.ucla.edu
lbmp.anthro.ucla.edu
digital.library.ucla.edu
intercampus.genetics.ucla.edu
whitmania.ucla.edu
secure5.ha.ucla.edu
luskin.cmfe-asm-01.noc.ucla.edu
scandinavian.ucla.edu
pcard.finance.ucla.edu
pods5-stage.mednet.ucla.edu
lasr.cs.ucla.edu
archivematica.library.ucla.edu
cryoem.ucla.edu
*.genetics.ucla.edu
www.ampersand.gseis.ucla.edu
sait-api-qaa.uclanet.ucla.edu
bruinpost.ucla.edu
giving.ucla.edu
trs.it.ucla.edu
test.int.maximo.ucla.edu
stage4.my.ucla.edu
collie.ats.ucla.edu
gpsslvpn.mednet.ucla.edu
greenfieldlab.psych.ucla.edu
5690449683546112-fe3.pantheonsite.io
www.cal.cs.ucla.edu
npc.cnsi.ucla.edu
patstest.research.ucla.edu
sites.anderson.ucla.edu
sni.cloudflaressl.com
tls.automattic.com
lsdapimdb01.medctr.ucla.edu
info-smtp-asm-01.noc.ucla.edu
cluster3.technolutions.net
mbi.ucla.edu
www.biolchem.ucla.edu
portal.research.ucla.edu
www.predictiontechnology.ucla.edu
intercampus.genetics.ucla.edu
cores.ee.ucla.edu
5729623769874432-fe3.pantheonsite.io
velosws1.ad.medctr.ucla.edu
buddhistbodies.humspace.ucla.edu
ergonomics.ucla.edu
epss.ucla.edu
sni.cloudflaressl.com
*.sistat.ucla.edu
labschool.ucla.edu
accounts-test.iam.ucla.edu
webapps.ccnet.ucla.edu
fsus-6.freshservice.com
osf.ucla.edu
www.botgard.ucla.edu
fspos.asucla.ucla.edu
npc.cnsi.ucla.edu
hss.semel.ucla.edu
voteview.polisci.ucla.edu
risksciences.ucla.edu
lucian.humspace.ucla.edu
laes.neurology.ucla.edu
webmail2.seas.ucla.edu
milken.music.ucla.edu
pams.research.ucla.edu
vmw-asm-04.noc.ucla.edu
sinai.library.ucla.edu
hue.humspace.ucla.edu
drugdiscovery.neurology.ucla.edu
anthro.ucla.edu
zhoulab.cass.idre.ucla.edu
giveto.ucla.edu
gseis.ucla.edu
fsapi.it.ucla.edu
channel.hammer.ucla.edu
video.law.ucla.edu
transitwiki.org
5735088218177536-fe1.pantheonsite.io
orisapps.research.ucla.edu
www.interactions.gseis.ucla.edu
barbernas.eeb.ucla.edu
nospam9.ad.ucla.edu
alb-p05.medschool.ucla.edu
ids.mednet.ucla.edu
colossus.cdh.ucla.edu
transportation.ucla.edu
pats.resadmin.ucla.edu
alumni.anderson.ucla.edu
partnershipschools.gseis.ucla.edu
server99b.dent.ucla.edu
nano.ucla.edu
lasik.ucla.edu
gsc1.bisp.ucla.edu
scai.cs.ucla.edu
www.bol.ucla.edu
ecr.idre.ucla.edu
deblab.med.ucla.edu
president.usac.ucla.edu
www.botgard.ucla.edu
5659974608879616-fe3.pantheonsite.io
www.admission.ucla.edu
hci.ucla.edu
lbmp.anthro.ucla.edu
digital.library.ucla.edu
intercampus.genetics.ucla.edu
whitmania.ucla.edu
secure5.ha.ucla.edu
Certificate
The complete raw certificate details for cryoem.ucla.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHJjCCBg6gAwIBAgIRAKdkz8JcsXWzkYuqnYcRhLAwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTkwOTE3MDAwMDAwWhcNMjEwOTE2 MjM1OTU5WjCB3zELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTkwMDk1MRMwEQYDVQQI EwpDYWxpZm9ybmlhMRQwEgYDVQQHEwtMb3MgQW5nZWxlczEbMBkGA1UECRMSNDA1 IEhpbGdhcmQgQXZlbnVlMS4wLAYDVQQKEyVVbml2ZXJzaXR5IG9mIENhbGlmb3Ju aWEsIExvcyBBbmdlbGVzMS4wLAYDVQQLEyVEYXZpZCBHZWZmZW4gU2Nob29sIG9m IE1lZGljaW5lLCBER0lUMRgwFgYDVQQDEw9jcnlvZW0udWNsYS5lZHUwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsit3NQkd4Hgofyi5U0BfaXy5DEZ2a mS7d9YAmx7G9rq2uTMj6wegEbVsLbZ8Tv7u17C28mPTMmN11gLpcSZlay/4W2Wm4 foGqEzD/kQ3bNNo/+IjeWkuyvNLQto1uSoySgmkQAe/9RZ7ygrBNxyQhZy9exvb4 GUSacEmFn1eCh6wmFZT2t2ct/zOGJqDxUb9nX4tPfMVKz2q54oMgFa/gR3hAggjR xhHxxe5P1IlvVhGOClFHLCcKvIKDjodsLrTPyMJ+Z39GVB/KudQi2oHpVfLxmXcs Huxxu0MgyOgkt98iCjARIqOnSXmX4AhO7jaMdY83aEhbKtHx+u2g6Du/AgMBAAGj ggNDMIIDPzAfBgNVHSMEGDAWgBQeBaN3j2yW4luHS6a0hqxxAAznODAdBgNVHQ4E FgQUJc9XJR2LCKT482jIZ5HowrFmb88wDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGcGA1UdIARgMF4w UgYMKwYBBAGuIwEEAwEBMEIwQAYIKwYBBQUHAgEWNGh0dHBzOi8vd3d3LmluY29t bW9uLm9yZy9jZXJ0L3JlcG9zaXRvcnkvY3BzX3NzbC5wZGYwCAYGZ4EMAQICMEQG A1UdHwQ9MDswOaA3oDWGM2h0dHA6Ly9jcmwuaW5jb21tb24tcnNhLm9yZy9JbkNv bW1vblJTQVNlcnZlckNBLmNybDB1BggrBgEFBQcBAQRpMGcwPgYIKwYBBQUHMAKG Mmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9JbkNvbW1vblJTQVNlcnZlckNBXzIu Y3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMBoGA1Ud EQQTMBGCD2NyeW9lbS51Y2xhLmVkdTCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFm AHUA9lyUL9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAFtQR24QwAABAMA RjBEAiAutpCogeTL+i1BK/wvGqYTRV0qpb9Iaox2EEwd4Jo09AIgLFeLUbC8C0OP wso3U9HeOzjBo7qWA3DHNMFlvW7uD6oAdQBElGUusO7Or8RAB9io/ijA2uaCvtjL MbU/0zOWtbaBqAAAAW1BHbhRAAAEAwBGMEQCIDKCG43jrflhSrdlnUZagcTfpyd+ K2erShwkAiwq9lEbAiBgWYUdQ4KmsVP1y6DBcDE22XCRIJcdOLM0NoXgLbBOAgB2 AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABbUEduCwAAAQDAEcw RQIhANy9ZzX968oSDChGF6NS4w9tcatsxXGkdT06m/WmMDn7AiARryFgvBWf47xd JTVVATmPMW/wVeVWI/Zobkuj2sy6mzANBgkqhkiG9w0BAQsFAAOCAQEAM1w9+o9N D/Um6IiLobtpGU2Zu9MILe67yFrqiWbXH5KBGRvrw4DpOLkhbMn8djpMHn6KyKcd bMCiJBfdnNC1UUGzy6uiDhM6HJLmg1D9gN0N3IWvNXUSG/KQkgxadhMf/Z6N3vzO w5rnZYyAxpWjXY2fp4ckox4Ja3A6zppuX33J9dai4FMGurD464GmAUVNzYTiutzW 4/swDKz9jfsUv7Dbx8zZLyifsHaLi7NZBDmf+usKvH3w2C1nX73lGZo5KSqYKOos 8npWhUVFZEumXmjk8PcEJKhykfUd6yO5IpXaXKdieFqL1qTg35N3DEqxQzy23NaJ riVbJ9whaqt9rg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7IrdzUJHeB4KH8ouVNAX 2l8uQxGdmpku3fWAJsexva6trkzI+sHoBG1bC22fE7+7tewtvJj0zJjddYC6XEmZ Wsv+FtlpuH6BqhMw/5EN2zTaP/iI3lpLsrzS0LaNbkqMkoJpEAHv/UWe8oKwTcck IWcvXsb2+BlEmnBJhZ9XgoesJhWU9rdnLf8zhiag8VG/Z1+LT3zFSs9queKDIBWv 4Ed4QIII0cYR8cXuT9SJb1YRjgpRRywnCryCg46HbC60z8jCfmd/RlQfyrnUItqB 6VXy8Zl3LB7scbtDIMjoJLffIgowESKjp0l5l+AITu42jHWPN2hIWyrR8frtoOg7 vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 222504518839673073803816963308199707824 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '90095' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Los Angeles' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '405 Hilgard Avenue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of California, Los Angeles' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'David Geffen School of Medicine, DGIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cryoem.ucla.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29860717552558925290232826541602196951948995568383473876157984070806509608091548489595610054498300804005094436891005055430878215841894705282571696003072192594266389340125936709816683796405963609018802203822032854897839599751846992140229791792266715659935902951608160846873413896549994149038157550837309099841978045582035133350492229264319217870628332669889052262893061832380805951012858836131341281628695818306442769540979195130349338206677135869317918537579898518046962751884386871882576398763179980297512684486521255697386381109430820306582139910122678177505582759297047950266498958881832435224021068322146202696639 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 25cf57251d8b08a4f8f368c86791e8c2b1666fcf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cryoem.ucla.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 0166007500f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e30000016d411db843000004030046304402202eb690a881e4cbfa2d412bfc2f1aa613455d2aa5bf486a8c76104c1de09a34f402202c578b51b0bc0b438fc2ca3753d1de3b38c1a3ba960370c734c165bd6eee0faa0075004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000016d411db8510000040300463044022032821b8de3adf9614ab7659d465a81c4dfa7277e2b67ab4a1c24022c2af6511b02206059851d4382a6b153f5cba0c1703136d9709120971d38b3343685e02db04e020076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000016d411db82c0000040300473045022100dcbd6735fdebca120c284617a352e30f6d71ab6cc571a4753d3a9bf5a63039fb022011af2160bc159fe3bc5d25355501398f316ff055e55623f6686e4ba3daccba9b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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