web.visaservices.duke.edu
- Duke University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 94:4f:e6:07:0a:d4:e7:ee:b9:df:dd:43:7c:1b:ba:c0 was issued on by Internet2.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Duke University
Organization:
Duke University
Organization unit: OIT
Organization unit: OIT
Address:
103 Allen Bldg
Postal code: 27708
State / Province: NC
Locality: Durham
Country: US
Postal code: 27708
State / Province: NC
Locality: Durham
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 94:4f:e6:07:0a:d4:e7:ee:b9:df:dd:43:7c:1b:ba:c0Serial Number (int): 197140600340150015698813276756043872960
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 16:b1:37:60:8f:cc:59:63:75:aa:74:62:44:75:b9:78:f1:39:33:f8
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 02:7c:40:01:54:fd:34:a3:df:f6:67:75:b0:e9:26:de:11:26:f0:51
Fingerprint (sha256): 00:69:af:2f:6c:2a:59:9b:f7:4d:e3:89:cb:83:41:5b:95:e0:83:47:f9:42:95:6e:23:6f:3f:2b:b5:b8:4a:dd
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate web.visaservices.duke.edu
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for web.visaservices.duke.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
web.visaservices.duke.edu
dvs-visa-pws1.oit.duke.edu
dvs-visa-pws1.win.duke.edu
web-prod.visaservices.duke.edu
dvs-visa-pws1.oit.duke.edu
dvs-visa-pws1.win.duke.edu
web-prod.visaservices.duke.edu
Other certificates including the domain name duke.edu
(limited to 100 certificates)
solr.oit.duke.edu
eam-app-test-01.oit.duke.edu
statuspage.io
www1-stage.fuqua.duke.edu
stream.fuqua.duke.edu
vlp-orimrh001.dhe.duke.edu
vcm-7069.vm.duke.edu
rapid-936.vm.duke.edu
vcm-5696.vm.duke.edu
stiffrobertslab.pratt.duke.edu
inform4-edc-qc.dcri.duke.edu
vcm-6141.vm.duke.edu
fitz-cups-01.oit.duke.edu
vcm-4779.vm.duke.edu
sakai.duke.edu
trivedi.pratt.duke.edu
inform46-aq52-qc.dcri.duke.edu
statuspage.io
dws-e.oit.duke.edu
statuspage.io
web.visaservices.duke.edu
patty.dnec.duke.edu
www.dukephoto.duke.edu
alsclinic.duke.edu
cluster.technolutions.net
oriapps.duhs.duke.edu
statuspage.io
ccbb.duke.edu
dukecapitalpartners.duke.edu
cpe-bach-multi1.trinity.duke.edu
projects.law.duke.edu
connect.ssri.duke.edu
work.duke.edu
gartner.oit.duke.edu
vcm-6535.vm.duke.edu
go.fuqua.duke.edu
queerhistory.duke.edu
communications.hr.duke.edu
vcm-6503.vm.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-4198.vm.duke.edu
maestro-hsw.duhs.duke.edu
dcid.sanford.duke.edu
web.visaservices.duke.edu
recreation.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-5257.vm.duke.edu
vcm-5238.vm.duke.edu
vcm-12275.vm.duke.edu
www.fuquaworld.duke.edu
iqaapp.dhvi.duke.edu
yt-cs216.cs.duke.edu
andererseits.library.duke.edu
appledore2.notes.duke.edu
payments.tip.duke.edu
vcm-6956.vm.duke.edu
vcm-6655.vm.duke.edu
portal.duke.edu
vcm-4178.vm.duke.edu
www.highseas.env.duke.edu
bradford.lib.duke.edu
abaqus.oit.duke.edu
nunn-lab.evolutionaryanthropology.duke.edu
vcm-7023.vm.duke.edu
vcm-7214.vm.duke.edu
redy.ssri.duke.edu
globaled.duke.edu
vcm-5001.vm.duke.edu
warpwire-frontend-test.oit.duke.edu
vcm-24408.vm.duke.edu
pateklab.biology.duke.edu
cacti-test.oit.duke.edu
vcm-5694.vm.duke.edu
roomview.trinity.duke.edu
fast.dcri.duke.edu
www.gifts.duke.edu
medspace.mc.duke.edu
vcm-6817.vm.duke.edu
forms.hr.duke.edu
enquire.ads.duke.edu
vcm-4824.vm.duke.edu
vcm-4390.vm.duke.edu
conf.events.duke.edu
vcm-5513.vm.duke.edu
calendar.duke.edu
highseas.env.duke.edu
vcm-4296.vm.duke.edu
www1-prod.fuqua.duke.edu
api.oit.duke.edu
www.callrec.oit.duke.edu
igs.duke.edu
vcm-4734.vm.duke.edu
lift.duke.edu
vcm-6534.vm.duke.edu
socialequity.duke.edu
statuspage.io
news-old.sanford.duke.edu
vcm-4573.vm.duke.edu
vcm-6671.vm.duke.edu
eam-app-test-01.oit.duke.edu
statuspage.io
www1-stage.fuqua.duke.edu
stream.fuqua.duke.edu
vlp-orimrh001.dhe.duke.edu
vcm-7069.vm.duke.edu
rapid-936.vm.duke.edu
vcm-5696.vm.duke.edu
stiffrobertslab.pratt.duke.edu
inform4-edc-qc.dcri.duke.edu
vcm-6141.vm.duke.edu
fitz-cups-01.oit.duke.edu
vcm-4779.vm.duke.edu
sakai.duke.edu
trivedi.pratt.duke.edu
inform46-aq52-qc.dcri.duke.edu
statuspage.io
dws-e.oit.duke.edu
statuspage.io
web.visaservices.duke.edu
patty.dnec.duke.edu
www.dukephoto.duke.edu
alsclinic.duke.edu
cluster.technolutions.net
oriapps.duhs.duke.edu
statuspage.io
ccbb.duke.edu
dukecapitalpartners.duke.edu
cpe-bach-multi1.trinity.duke.edu
projects.law.duke.edu
connect.ssri.duke.edu
work.duke.edu
gartner.oit.duke.edu
vcm-6535.vm.duke.edu
go.fuqua.duke.edu
queerhistory.duke.edu
communications.hr.duke.edu
vcm-6503.vm.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-4198.vm.duke.edu
maestro-hsw.duhs.duke.edu
dcid.sanford.duke.edu
web.visaservices.duke.edu
recreation.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-5257.vm.duke.edu
vcm-5238.vm.duke.edu
vcm-12275.vm.duke.edu
www.fuquaworld.duke.edu
iqaapp.dhvi.duke.edu
yt-cs216.cs.duke.edu
andererseits.library.duke.edu
appledore2.notes.duke.edu
payments.tip.duke.edu
vcm-6956.vm.duke.edu
vcm-6655.vm.duke.edu
portal.duke.edu
vcm-4178.vm.duke.edu
www.highseas.env.duke.edu
bradford.lib.duke.edu
abaqus.oit.duke.edu
nunn-lab.evolutionaryanthropology.duke.edu
vcm-7023.vm.duke.edu
vcm-7214.vm.duke.edu
redy.ssri.duke.edu
globaled.duke.edu
vcm-5001.vm.duke.edu
warpwire-frontend-test.oit.duke.edu
vcm-24408.vm.duke.edu
pateklab.biology.duke.edu
cacti-test.oit.duke.edu
vcm-5694.vm.duke.edu
roomview.trinity.duke.edu
fast.dcri.duke.edu
www.gifts.duke.edu
medspace.mc.duke.edu
vcm-6817.vm.duke.edu
forms.hr.duke.edu
enquire.ads.duke.edu
vcm-4824.vm.duke.edu
vcm-4390.vm.duke.edu
conf.events.duke.edu
vcm-5513.vm.duke.edu
calendar.duke.edu
highseas.env.duke.edu
vcm-4296.vm.duke.edu
www1-prod.fuqua.duke.edu
api.oit.duke.edu
www.callrec.oit.duke.edu
igs.duke.edu
vcm-4734.vm.duke.edu
lift.duke.edu
vcm-6534.vm.duke.edu
socialequity.duke.edu
statuspage.io
news-old.sanford.duke.edu
vcm-4573.vm.duke.edu
vcm-6671.vm.duke.edu
Certificate
The complete raw certificate details for web.visaservices.duke.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHTTCCBjWgAwIBAgIRAJRP5gcK1Ofuud/dQ3wbusAwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTgxMTI5MDAwMDAwWhcNMjAxMTI4 MjM1OTU5WjCBoDELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTI3NzA4MQswCQYDVQQI EwJOQzEPMA0GA1UEBxMGRHVyaGFtMRcwFQYDVQQJEw4xMDMgQWxsZW4gQmxkZzEY MBYGA1UEChMPRHVrZSBVbml2ZXJzaXR5MQwwCgYDVQQLEwNPSVQxIjAgBgNVBAMT GXdlYi52aXNhc2VydmljZXMuZHVrZS5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCi4BgiictSgVpm8ir4i281Vqod/nyuenkeE41eV5Twf8R1Rcnj tDU5Cw7lcrzXXTDj2E7t/Ss7jM3VsOcHPsvJYAOYFXrJR5vHVHvvNGFywT+1cvEp B2txO22r7dqQN3mycbBPzxeQnU4iyRve29OJcpoEQWjym6N03BA035cxwYJjddcD eDjKL6ZkCOqeqhB+sInfUex8sXM8s0T3qn4zp+W8U6wFrNRrfasqjiLXz7QnhLm9 Vikk6vaitgIWL2CMmjkEIo+lR2hjFkNRyaZHgZPwK/N0kY6SGK3gjR9/FtElxAqi GZhWRpZ90omCIPRhH71IN6uGvszMxZrCZ+jPAgMBAAGjggOpMIIDpTAfBgNVHSME GDAWgBQeBaN3j2yW4luHS6a0hqxxAAznODAdBgNVHQ4EFgQUFrE3YI/MWWN1qnRi RHW5ePE5M/gwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMGcGA1UdIARgMF4wUgYMKwYBBAGuIwEEAwEB MEIwQAYIKwYBBQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3Jl cG9zaXRvcnkvY3BzX3NzbC5wZGYwCAYGZ4EMAQICMEQGA1UdHwQ9MDswOaA3oDWG M2h0dHA6Ly9jcmwuaW5jb21tb24tcnNhLm9yZy9JbkNvbW1vblJTQVNlcnZlckNB LmNybDB1BggrBgEFBQcBAQRpMGcwPgYIKwYBBQUHMAKGMmh0dHA6Ly9jcnQudXNl cnRydXN0LmNvbS9JbkNvbW1vblJTQVNlcnZlckNBXzIuY3J0MCUGCCsGAQUFBzAB hhlodHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMHwGA1UdEQR1MHOCGXdlYi52aXNh c2VydmljZXMuZHVrZS5lZHWCGmR2cy12aXNhLXB3czEub2l0LmR1a2UuZWR1ghpk dnMtdmlzYS1wd3MxLndpbi5kdWtlLmVkdYIed2ViLXByb2QudmlzYXNlcnZpY2Vz LmR1a2UuZWR1MIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdgC72d+8H4pxtZOU I5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWdggoa6AAAEAwBHMEUCIQD4a95aokBa ZHhFNKXLc7kR0ic8K5NIbyRBbeXPo9SJ/wIgOO8CFCVHZKaGRk7Cn6EHx52k/BDT LACINnIopAsA6mQAdwBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAA AWdggob7AAAEAwBIMEYCIQD+i3cgwrOfPhCCCF30Vp9z6xIKV8fZODYH19u+1llo WAIhANk6NXbp6XQXZShybOOh9jk68Oet4ZmAEsPmMeqSWxhoAHcA8JWkWfIA0YJA EC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFnYIKHBQAABAMASDBGAiEA+riBwHzd TFcTuTUUNjbkDTkn/WpkEOVM5vzKtJiA/hgCIQCHc6MQv5+GAbeo0UxCI2ls9N1w LYBI+UkpMljXFmnE5zANBgkqhkiG9w0BAQsFAAOCAQEAdspzNz7F5PDYi31aFEqo Y6fzqkZnKCcEKdKIx5waVa3L6AnW02QUuNaQnyw0aHQc4EaT4PSlirMiCrY4Fm9L aKkkaCxfmma6vnrWovSkLD1NN/UkvF8V6WeRb0JOEKCs+dYCljgETPE5idjqEQ0d a1IQhEWiLKb3zvLafk+o0MORyN6IC+T8lLxbgc0tb/oX1XAYdRiQVGEW0v30o955 mb13CplnNp5dHQzkiNuGN84q7szTijiG1/BwRie7E/OWFcLIVC+tfsc2tm+E/D05 BlXIE3jPox6gKDTRHuK+UJlspfAVXk4In6XiAIQDD2rUbtCoKfm3mAw8S6PatyUg 8A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouAYIonLUoFaZvIq+Itv NVaqHf58rnp5HhONXleU8H/EdUXJ47Q1OQsO5XK8110w49hO7f0rO4zN1bDnBz7L yWADmBV6yUebx1R77zRhcsE/tXLxKQdrcTttq+3akDd5snGwT88XkJ1OIskb3tvT iXKaBEFo8pujdNwQNN+XMcGCY3XXA3g4yi+mZAjqnqoQfrCJ31HsfLFzPLNE96p+ M6flvFOsBazUa32rKo4i18+0J4S5vVYpJOr2orYCFi9gjJo5BCKPpUdoYxZDUcmm R4GT8CvzdJGOkhit4I0ffxbRJcQKohmYVkaWfdKJgiD0YR+9SDerhr7MzMWawmfo zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 197140600340150015698813276756043872960 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '27708' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Durham' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '103 Allen Bldg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Duke University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'web.visaservices.duke.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20561110411074113198136398301619842052527459282661524869002607647965916846243051339328607768488488235069722743178269404346618550746073836288523295525587050802615094896465444881169079651026766258771743323945747798233107893597041040405085531247488804143872487711783638825701783055464475068045615768771136004822179332409928188750606755521843484702703085810481277941033916625203058894619912730005008817274243320129575582548802535058864654676246472184085579406456834990665265884580921189372660236234604849195988628737945064583302784588514820298277790069859352130187328672138417150918583447799729387775638617905931871578319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 16b137608fcc596375aa74624475b978f13933f8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (117 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web.visaservices.duke.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dvs-visa-pws1.oit.duke.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dvs-visa-pws1.win.duke.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web-prod.visaservices.duke.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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