staging.gifford.ucdavis.edu
- University of California, Davis -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number cd:17:92:76:3d:85:ce:8c:2c:80:ac:87:4f:1f:62:74 was issued on by Internet2.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of California, Davis
Organization:
University of California, Davis
Organization unit: CA&ES
Organization unit: CA&ES
Address:
One Shields Avenue
Postal code: 95616
State / Province: CA
Locality: Davis
Country: US
Postal code: 95616
State / Province: CA
Locality: Davis
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): cd:17:92:76:3d:85:ce:8c:2c:80:ac:87:4f:1f:62:74Serial Number (int): 272614132563419712934167570080451224180
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 1d:9a:81:6e:90:0b:0e:3c:84:2d:ab:aa:c5:f5:d5:b4:9b:af:83:f0
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): ed:2b:22:7b:4b:79:a1:ca:16:e2:42:99:31:7d:ac:a0:32:8b:ec:3e
Fingerprint (sha256): 00:5a:79:5b:9b:8b:8e:0b:4e:a8:66:e9:d2:63:77:c0:ae:44:9a:4a:8b:21:42:f2:40:64:45:16:cf:f4:86:07
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate staging.gifford.ucdavis.edu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.gifford.ucdavis.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.gifford.ucdavis.edu
s.staging.gifford.ucdavis.edu
s.staging.gifford.ucdavis.edu
Other certificates including the domain name ucdavis.edu
(limited to 100 certificates)
mytravel-apps.ucdavis.edu
health-stage.ucdavis.edu
bml.ucdavis.edu
cwec.ucdavis.edu
renfe.ucdavis.edu
test-web-lws.edu.help
payweb-dev.ucdavis.edu
axiomepm.ucdmc.ucdavis.edu
status.acquia.com
saintly.zeck.net
5719238044024832-fe2.pantheonsite.io
carpepm.almonds.com
developers.dss.ucdavis.edu
us.prod.campusgroups.com
bluefoxstatus.com
secure.vetmed.ucdavis.edu
staging.gifford.ucdavis.edu
numbernine.ucdavis.edu
it.uahs.arizona.edu
5719238044024832-fe2.pantheonsite.io
status.itsnationwide.com
org.ucdavis.edu
wcec.ucdavis.edu
breeze.ucdavis.edu
5733679603122176-fe4.pantheonsite.io
ucdc.edu
dev.cas.ucdavis.edu
status.takemepay.com
5644101080842240-fe2.pantheonsite.io
mobile.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
5648161435549696-fe2.pantheonsite.io
smtp.lib.ucdavis.edu
chertok.physics.ucdavis.edu
ais.ucdavis.edu
5648161435549696-fe2.pantheonsite.io
dual.ucdavis.edu
listings.ucdavis.edu
csiflabs.cs.ucdavis.edu
vidi.cs.ucdavis.edu
www.superfund.ucdavis.edu
*.gsm.ucdavis.edu
cmsi.ucdavis.edu
cntrics.ucdavis.edu
adxstatus.com
linlab.ucdavis.edu
igg.ucdavis.edu
davt-0703-x3-a.ucdmc.ucdavis.edu
5727950116749312-fe4.pantheonsite.io
5756292874371072-fe1.pantheonsite.io
tle.ucdavis.edu
pczt-win-lbk-a1.primate.ucdavis.edu
psa.ucdavis.edu
anthromuseum.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
asucd.ucdavis.edu
vpn.larry.ucdavis.edu
virtuallab.ucdavis.edu
5756292874371072-fe1.pantheonsite.io
scilhsapp01.ucdmc.ucdavis.edu
ces.ucdavis.edu
sfunder9cert.net
streetfilms.org
banner-api.gs.ucdavis.edu
stata.ucdavis.edu
horus.ucdavis.edu
gawsmith.ucdavis.edu
sfunder9cert.net
ceprod.ucdmc.ucdavis.edu
scdev03.ucdavis.edu
tls.automattic.com
banking-business-review.com
5747976207073280-fe2.pantheonsite.io
ionenterprise.ucdavis.edu
forensicscience.ucdavis.edu
cdn-test.battlefields.org
orcid.library.ucdavis.edu
virchow.ucdavis.edu
test.eis.uw.edu
pioneeringpunjabis.ucdavis.edu
linlab.ucdavis.edu
5742636757417984-fe1.pantheonsite.io
cnprc.ucdavis.edu
gap.ucdavis.edu
support.ucdavis.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
bob.cs.ucdavis.edu
placemaking.ucdavis.edu
aphid.ucdavis.edu
securedns.planmygift.org
5699257587728384-fe4.pantheonsite.io
messenger.dss.ucdavis.edu
moraleslab.ucdavis.edu
eu-status.walkme.com
5666083260334080-fe3.pantheonsite.io
wiki.cse.ucdavis.edu
sapep.api.cloud.ucdavis.edu
5666083260334080-fe3.pantheonsite.io
pb2.extensiononline.ucdavis.edu
health-stage.ucdavis.edu
bml.ucdavis.edu
cwec.ucdavis.edu
renfe.ucdavis.edu
test-web-lws.edu.help
payweb-dev.ucdavis.edu
axiomepm.ucdmc.ucdavis.edu
status.acquia.com
saintly.zeck.net
5719238044024832-fe2.pantheonsite.io
carpepm.almonds.com
developers.dss.ucdavis.edu
us.prod.campusgroups.com
bluefoxstatus.com
secure.vetmed.ucdavis.edu
staging.gifford.ucdavis.edu
numbernine.ucdavis.edu
it.uahs.arizona.edu
5719238044024832-fe2.pantheonsite.io
status.itsnationwide.com
org.ucdavis.edu
wcec.ucdavis.edu
breeze.ucdavis.edu
5733679603122176-fe4.pantheonsite.io
ucdc.edu
dev.cas.ucdavis.edu
status.takemepay.com
5644101080842240-fe2.pantheonsite.io
mobile.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
5648161435549696-fe2.pantheonsite.io
smtp.lib.ucdavis.edu
chertok.physics.ucdavis.edu
ais.ucdavis.edu
5648161435549696-fe2.pantheonsite.io
dual.ucdavis.edu
listings.ucdavis.edu
csiflabs.cs.ucdavis.edu
vidi.cs.ucdavis.edu
www.superfund.ucdavis.edu
*.gsm.ucdavis.edu
cmsi.ucdavis.edu
cntrics.ucdavis.edu
adxstatus.com
linlab.ucdavis.edu
igg.ucdavis.edu
davt-0703-x3-a.ucdmc.ucdavis.edu
5727950116749312-fe4.pantheonsite.io
5756292874371072-fe1.pantheonsite.io
tle.ucdavis.edu
pczt-win-lbk-a1.primate.ucdavis.edu
psa.ucdavis.edu
anthromuseum.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
asucd.ucdavis.edu
vpn.larry.ucdavis.edu
virtuallab.ucdavis.edu
5756292874371072-fe1.pantheonsite.io
scilhsapp01.ucdmc.ucdavis.edu
ces.ucdavis.edu
sfunder9cert.net
streetfilms.org
banner-api.gs.ucdavis.edu
stata.ucdavis.edu
horus.ucdavis.edu
gawsmith.ucdavis.edu
sfunder9cert.net
ceprod.ucdmc.ucdavis.edu
scdev03.ucdavis.edu
tls.automattic.com
banking-business-review.com
5747976207073280-fe2.pantheonsite.io
ionenterprise.ucdavis.edu
forensicscience.ucdavis.edu
cdn-test.battlefields.org
orcid.library.ucdavis.edu
virchow.ucdavis.edu
test.eis.uw.edu
pioneeringpunjabis.ucdavis.edu
linlab.ucdavis.edu
5742636757417984-fe1.pantheonsite.io
cnprc.ucdavis.edu
gap.ucdavis.edu
support.ucdavis.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
bob.cs.ucdavis.edu
placemaking.ucdavis.edu
aphid.ucdavis.edu
securedns.planmygift.org
5699257587728384-fe4.pantheonsite.io
messenger.dss.ucdavis.edu
moraleslab.ucdavis.edu
eu-status.walkme.com
5666083260334080-fe3.pantheonsite.io
wiki.cse.ucdavis.edu
sapep.api.cloud.ucdavis.edu
5666083260334080-fe3.pantheonsite.io
pb2.extensiononline.ucdavis.edu
Certificate
The complete raw certificate details for staging.gifford.ucdavis.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGsDCCBZigAwIBAgIRAM0XknY9hc6MLICsh08fYnQwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTgwNTE0MDAwMDAwWhcNMTkwNTE0 MjM1OTU5WjCBtzELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTk1NjE2MQswCQYDVQQI EwJDQTEOMAwGA1UEBxMFRGF2aXMxGzAZBgNVBAkTEk9uZSBTaGllbGRzIEF2ZW51 ZTEoMCYGA1UEChMfVW5pdmVyc2l0eSBvZiBDYWxpZm9ybmlhLCBEYXZpczEOMAwG A1UECwwFQ0EmRVMxJDAiBgNVBAMTG3N0YWdpbmcuZ2lmZm9yZC51Y2RhdmlzLmVk dTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM45sFagLBY7Z0BC5Zkk vSVyzSLbOdPa1EVA3qTwfvw7suIOzMpVi0HZ1O/TNxIh7zYriThRQJNCuekla1NL Gvh5BeRPxIeYRZxSKS4z0OA9SOwopROJG/3SxlFin2qhDWCK4mct2KDVnB0U6lQZ IhlEWb52sFZ4pLm6xME7yyXEGh+Tew8QXc7D3qxDg9gkz4pqC7rdRylPhPx0Zkkj k/9GU0Dv4stPnBSZDXf75oUf4/lwDDjNeSvLBmdzKCoMYY2hAHD3hn9IVrz5bOS3 FtojcXSmVu5HDY03hjhbJuoFEkEUJW5TimUis2vycPA/HFi6/qMTx9/Wg9NCBZuM JOECAwEAAaOCAvUwggLxMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEADOc4 MB0GA1UdDgQWBBQdmoFukAsOPIQtq6rF9dW0m6+D8DAOBgNVHQ8BAf8EBAMCBaAw DAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwZwYD VR0gBGAwXjBSBgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6Ly93 d3cuaW5jb21tb24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAIBgZn gQwBAgIwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1yc2Eu b3JnL0luQ29tbW9uUlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+Bggr BgEFBQcwAoYyaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNBU2Vy dmVyQ0FfMi5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5j b20wRQYDVR0RBD4wPIIbc3RhZ2luZy5naWZmb3JkLnVjZGF2aXMuZWR1gh1zLnN0 YWdpbmcuZ2lmZm9yZC51Y2RhdmlzLmVkdTCCAQMGCisGAQQB1nkCBAIEgfQEgfEA 7wB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABY2AaBDYAAAQD AEcwRQIgVwSzx2QHTneFe3A5WqWMBWAuXStgmx22o74a30hG/ZsCIQDMyG5aqIhj rLgZSBy/+HSkULLq1I7DbyuYJCA09c08YQB1AHR+2oMxrTMQkSGcziVPQnDCv/1e QiAIxjc1eeYQe8xWAAABY2AaBh4AAAQDAEYwRAIgWeuOksWp9y5tdCbllJZATdsS Erqe4v5SBSFoI9f+UhgCIGVest+xi/v7keB8WaWxFlcAuvGDviCKW4xr3PkzZl2k MA0GCSqGSIb3DQEBCwUAA4IBAQCUVum8/QbWI2cML+yRnCHzWal2w4fMtpsyWCLt FiuD2y7oEO+BSldDuwEu8/yjpEypKLMhI3lMeLQ261NJkofFz10Fnc8l92Gvtzum IBaKXtbqC8tufmmU+ucE5v2zyYKyaizNTpqtzdl10Hx6jDF3zBT0zuZ8VvrU2j32 jATm04zVpWS6cprTMjCTS9vPbmDCsglqnS4Fsb8AhjgT4lBpvdYP1gg4W1+Sf8T9 k1scp0vebzCArTRpQDNwE0Qb/6QtY6xet6DBjHQhfWsE5/ao2nXk7TVnDc3dqzbj YAF+GMwJLA8KJYWgynNaNAJ0OAUnaqEbnquJzSrVWjqIZ7TP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjmwVqAsFjtnQELlmSS9 JXLNIts509rURUDepPB+/Duy4g7MylWLQdnU79M3EiHvNiuJOFFAk0K56SVrU0sa +HkF5E/Eh5hFnFIpLjPQ4D1I7CilE4kb/dLGUWKfaqENYIriZy3YoNWcHRTqVBki GURZvnawVnikubrEwTvLJcQaH5N7DxBdzsPerEOD2CTPimoLut1HKU+E/HRmSSOT /0ZTQO/iy0+cFJkNd/vmhR/j+XAMOM15K8sGZ3MoKgxhjaEAcPeGf0hWvPls5LcW 2iNxdKZW7kcNjTeGOFsm6gUSQRQlblOKZSKza/Jw8D8cWLr+oxPH39aD00IFm4wk 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 272614132563419712934167570080451224180 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '95616' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Davis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'One Shields Avenue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of California, Davis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CA&ES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.gifford.ucdavis.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26033538241288869058086936281251857552467290161176177894732396710783641327854082599293525831094004759272850503431039695112894205698080053423530565611378799492532078711037677990585919959616462383139131622153481395442006769032289486011567905041006391546062915126245340008139425675510358374462136796371475976977008593422007115922854251112757589878735916248709220156779175233303590411794720211303111378295493434722136712353905202182843730657899226440598200571465789838975904498135273021328888640838434208999399669059335050479951305313439163275703425863919248224963624673761070720447145310454237219266488523850427384210657 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1d9a816e900b0e3c842dabaac5f5d5b49baf83f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.gifford.ucdavis.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's.staging.gifford.ucdavis.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000163601a0436000004030047304502205704b3c764074e77857b70395aa58c05602e5d2b609b1db6a3be1adf4846fd9b022100ccc86e5aa88863acb819481cbff874a450b2ead48ec36f2b98242034f5cd3c61007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000163601a061e0000040300463044022059eb8e92c5a9f72e6d7426e59496404ddb1212ba9ee2fe5205216823d7fe52180220655eb2dfb18bfbfb91e07c59a5b1165700baf183be208a5b8c6bdcf933665da4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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