stagingcatalog.uchicago.edu
- University of Chicago -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number d1:e2:89:83:26:06:fb:5a:a5:62:0f:61:88:6c:2c:37 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Chicago
Organization:
University of Chicago
Organization unit: IT Services - Self Enrollment
Organization unit: IT Services - Self Enrollment
Postal code:
60637
State / Province: IL
Locality: Chicago
Country: US
State / Province: IL
Locality: Chicago
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): d1:e2:89:83:26:06:fb:5a:a5:62:0f:61:88:6c:2c:37Serial Number (int): 278984899289850149042659945073628425271
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 01:5a:0d:11:e9:a9:30:bb:21:04:b2:3e:48:54:25:c6:dd:8a:99:33
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 27:38:bf:f6:97:08:8e:1f:da:e4:d2:3a:21:3a:20:e3:1b:05:d5:e6
Fingerprint (sha256): 00:7a:12:44:e7:22:2c:e5:dd:cb:51:16:39:80:53:34:ad:0a:3f:ae:9f:c1:a7:9a:e6:28:a3:a6:a3:6f:83:57
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate stagingcatalog.uchicago.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stagingcatalog.uchicago.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stagingcatalog.uchicago.edu
Other certificates including the domain name uchicago.edu
(limited to 100 certificates)
iic.uchicago.edu
online.professional.uchicago.edu
paretosolutions.uchicago.edu
www.alemsegedlab.uchicago.edu
cdis.uchicago.edu
5695872079757312-fe3.pantheonsite.io
5690145009303552-fe2.pantheonsite.io
www.dickinsonlab.uchicago.edu
biotime.uchicago.edu
accredible.tutor.com
cobeylab.uchicago.edu
cmb-s4.org
statuspage.io
artflx.uchicago.edu
hbpl.uchicago.edu
5695872079757312-fe3.pantheonsite.io
*.uchicago.edu
cri-kaaiismtp2.cri.uchicago.edu
stagingcatalog.uchicago.edu
cluster.technolutions.net
mirabeau.lib.uchicago.edu
uchicago-main.edge.bluestate.digital
5681717746597888-fe4.pantheonsite.io
loop.lib.uchicago.edu
isa.uchicago.edu
uofcsurveylab.uchicago.edu
sw.src.uchicago.edu
5690145009303552-fe2.pantheonsite.io
amploadvance.com
tls.automattic.com
aonhrlearningcenter.credentials.aon.com
www.cef.uchicago.edu
mh.uchicago.edu
www.ec.uchicago.edu
statuspage.io
grahamschoolinfo.uchicago.edu
incapsula.com
statuspage.io
chicagounbound.uchicago.edu
donatetocancer.uchicago.edu
ucwn.uchicago.edu
5695872079757312-fe3.pantheonsite.io
akamai-san108.exacttarget.com
clelandchat.uchicago.edu
smlnj.org
wg-gleacher.uchicago.edu
erairb-prod.uchicago.edu
academy-achievements.gong.io
www.mychoice.uchicago.edu
simswuat23.uchicago.edu
5764640680181760-fe4.pantheonsite.io
player.cs.uchicago.edu
rsna.staging.rcc.uchicago.edu
pyrite.lib.uchicago.edu
gargantua.lib.uchicago.edu
uei-dviz.uchicago.edu
1155-vcenter.uchicago.edu
ability.uchicago.edu
achieve.escoffier.edu
ul-rdg1.ad.uchicago.edu
reserve.staging.chicagobooth.edu
joyeuse.uchicago.edu
athletics.uchicago.edu
myaccount.uchicago.edu
hosted-ce29.grid.uchicago.edu
lists.ci.uchicago.edu
cri-ksqlinsd2.cri.uchicago.edu
minuet.cs.uchicago.edu
www.cdis.uchicago.edu
apply-harris.uchicago.edu
statuspage.io
spt.uchicago.edu
gev.uchicago.edu
whypolicy.uchicago.edu
cobeylab.uchicago.edu
blueprint.uchicago.edu
parkwait.uchicago.edu
academy-achievements.gong.io
www.urban.uchicago.edu
hbpl.uchicago.edu
tls.automattic.com
ulysses.uchicago.edu
tbc.uchicago.edu
cobeylab.uchicago.edu
encyclopedie.uchicago.edu
cobeylab.uchicago.edu
mpcs-courses.cs.uchicago.edu
webchat.uchicago.edu
www.placelab.uchicago.edu
eggplant.uchicago.edu
lbcnet.uchicago.edu
klab.ci.uchicago.edu
jupyterhub.grid.uchicago.edu
guides.lib.uchicago.edu
stream2.uchicago.edu
www-dev.cs.uchicago.edu
cluster.technolutions.net
rdmi.uchicago.edu
dvlf.uchicago.edu
mpml.uchicago.edu
online.professional.uchicago.edu
paretosolutions.uchicago.edu
www.alemsegedlab.uchicago.edu
cdis.uchicago.edu
5695872079757312-fe3.pantheonsite.io
5690145009303552-fe2.pantheonsite.io
www.dickinsonlab.uchicago.edu
biotime.uchicago.edu
accredible.tutor.com
cobeylab.uchicago.edu
cmb-s4.org
statuspage.io
artflx.uchicago.edu
hbpl.uchicago.edu
5695872079757312-fe3.pantheonsite.io
*.uchicago.edu
cri-kaaiismtp2.cri.uchicago.edu
stagingcatalog.uchicago.edu
cluster.technolutions.net
mirabeau.lib.uchicago.edu
uchicago-main.edge.bluestate.digital
5681717746597888-fe4.pantheonsite.io
loop.lib.uchicago.edu
isa.uchicago.edu
uofcsurveylab.uchicago.edu
sw.src.uchicago.edu
5690145009303552-fe2.pantheonsite.io
amploadvance.com
tls.automattic.com
aonhrlearningcenter.credentials.aon.com
www.cef.uchicago.edu
mh.uchicago.edu
www.ec.uchicago.edu
statuspage.io
grahamschoolinfo.uchicago.edu
incapsula.com
statuspage.io
chicagounbound.uchicago.edu
donatetocancer.uchicago.edu
ucwn.uchicago.edu
5695872079757312-fe3.pantheonsite.io
akamai-san108.exacttarget.com
clelandchat.uchicago.edu
smlnj.org
wg-gleacher.uchicago.edu
erairb-prod.uchicago.edu
academy-achievements.gong.io
www.mychoice.uchicago.edu
simswuat23.uchicago.edu
5764640680181760-fe4.pantheonsite.io
player.cs.uchicago.edu
rsna.staging.rcc.uchicago.edu
pyrite.lib.uchicago.edu
gargantua.lib.uchicago.edu
uei-dviz.uchicago.edu
1155-vcenter.uchicago.edu
ability.uchicago.edu
achieve.escoffier.edu
ul-rdg1.ad.uchicago.edu
reserve.staging.chicagobooth.edu
joyeuse.uchicago.edu
athletics.uchicago.edu
myaccount.uchicago.edu
hosted-ce29.grid.uchicago.edu
lists.ci.uchicago.edu
cri-ksqlinsd2.cri.uchicago.edu
minuet.cs.uchicago.edu
www.cdis.uchicago.edu
apply-harris.uchicago.edu
statuspage.io
spt.uchicago.edu
gev.uchicago.edu
whypolicy.uchicago.edu
cobeylab.uchicago.edu
blueprint.uchicago.edu
parkwait.uchicago.edu
academy-achievements.gong.io
www.urban.uchicago.edu
hbpl.uchicago.edu
tls.automattic.com
ulysses.uchicago.edu
tbc.uchicago.edu
cobeylab.uchicago.edu
encyclopedie.uchicago.edu
cobeylab.uchicago.edu
mpcs-courses.cs.uchicago.edu
webchat.uchicago.edu
www.placelab.uchicago.edu
eggplant.uchicago.edu
lbcnet.uchicago.edu
klab.ci.uchicago.edu
jupyterhub.grid.uchicago.edu
guides.lib.uchicago.edu
stream2.uchicago.edu
www-dev.cs.uchicago.edu
cluster.technolutions.net
rdmi.uchicago.edu
dvlf.uchicago.edu
mpml.uchicago.edu
Certificate
The complete raw certificate details for stagingcatalog.uchicago.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIRANHiiYMmBvtapWIPYYhsLDcwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTYxMTE4MDAwMDAwWhcNMTkxMTE4 MjM1OTU5WjCBqjELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTYwNjM3MQswCQYDVQQI EwJJTDEQMA4GA1UEBxMHQ2hpY2FnbzEeMBwGA1UEChMVVW5pdmVyc2l0eSBvZiBD aGljYWdvMSYwJAYDVQQLEx1JVCBTZXJ2aWNlcyAtIFNlbGYgRW5yb2xsbWVudDEk MCIGA1UEAxMbc3RhZ2luZ2NhdGFsb2cudWNoaWNhZ28uZWR1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VEVnlI1ohJQENJfQ0t8OS61xrkePWARfnhx ds34hEeBlinIbdWIR55rhAKARNeR1Y925kQhE2RgHGspV4M32k/6UFmJcW4V/4q+ /QpBfSTVe1YrWUL0UmpUWdPixnWJ6xzU8XSWXvJLTaMtCn9K4dDGydULnpoVlmsf YR5qv4Ui84rwcbKEf9CjspjFtfI+cQgNPyAyC66bdhOQ0jBnyqQ5rKfGBScscnv/ KVMHA/iLJyx6DiM0E6OxJOckPXulK0ztb+69s258UAozGXJC0F5+PfBNGtOoLtb/ JLQMzfRGhq/YWunU8MLRxgAF7qV+cMPv/8RZ8voRIW8A+ea4KwIDAQABo4IBzzCC AcswHwYDVR0jBBgwFoAUHgWjd49sluJbh0umtIascQAM5zgwHQYDVR0OBBYEFAFa DRHpqTC7IQSyPkhUJcbdipkzMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAA MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsG AQQBriMBBAMBATBCMEAGCCsGAQUFBwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5v cmcvY2VydC9yZXBvc2l0b3J5L2Nwc19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8E PTA7MDmgN6A1hjNodHRwOi8vY3JsLmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25S U0FTZXJ2ZXJDQS5jcmwwdQYIKwYBBQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRw Oi8vY3J0LnVzZXJ0cnVzdC5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAl BggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTAmBgNVHREEHzAd ghtzdGFnaW5nY2F0YWxvZy51Y2hpY2Fnby5lZHUwDQYJKoZIhvcNAQELBQADggEB ADaaoboankQ0z0ppIKNdI+k2RD56hmWT/yy1/yLr5IlNPrc92et+jZK3iVPdoFY0 2F8vlV1aBd/JPdPGQAF79izsyaCNgNCYmA3HL908ukvPi2EaEEEyoMyacCggn4OV bMBPLkzLxAtHe+S2WpQQqmdsG43laxXFxPvDfRUaC4ZDQUTRyyH6RNROuglo8PyT Mkuvqnm2UMFm6oN6CiS5gFJVav3lpA5LHsYQglXbluc+r12sKUClzIfGZUqLdSkq MIBbNxUCgOssQ5Zgt/WWjhDZzkbwZhJ7qmD6FPjkgaDK4Pkr8scNzXeFofH4F7dT qA6JaM/hu0xZE9jY6b5x+CI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VEVnlI1ohJQENJfQ0t8 OS61xrkePWARfnhxds34hEeBlinIbdWIR55rhAKARNeR1Y925kQhE2RgHGspV4M3 2k/6UFmJcW4V/4q+/QpBfSTVe1YrWUL0UmpUWdPixnWJ6xzU8XSWXvJLTaMtCn9K 4dDGydULnpoVlmsfYR5qv4Ui84rwcbKEf9CjspjFtfI+cQgNPyAyC66bdhOQ0jBn yqQ5rKfGBScscnv/KVMHA/iLJyx6DiM0E6OxJOckPXulK0ztb+69s258UAozGXJC 0F5+PfBNGtOoLtb/JLQMzfRGhq/YWunU8MLRxgAF7qV+cMPv/8RZ8voRIW8A+ea4 KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278984899289850149042659945073628425271 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '60637' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Services - Self Enrollment' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stagingcatalog.uchicago.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26423789968973754831611399034452251152874259090677232180862818564359766367877524547537195051732151539743489211690060298629435764536313652369663387591009619507059683566026081591737803936425758042411206026322251033275803516910447778121055330179707376394707368430408509533104351394397925801187139748158214000069405837913690678041748985640276368401961677233427324906709923227531143968569777323029518666226045140328424074035000786881237153429107596278787836600972177553506388189357222859465325816064950607909469835878896121973353863903239283148150381202846408771246716229014803669852103469725421197264723598555859244202027 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 015a0d11e9a930bb2104b23e485425c6dd8a9933 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stagingcatalog.uchicago.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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