ris-store.its.yale.edu
- Yale University -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 73:75:3e:66:c4:cf:9d:ad:29:55:99:45 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Yale University
Organization:
Yale University
State / Province:
Connecticut
Locality: New Haven
Country: US
Locality: New Haven
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 73:75:3e:66:c4:cf:9d:ad:29:55:99:45Serial Number (int): 35732515132821155071829317957
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 2b:ba:e2:34:ac:8f:57:7e:62:58:6b:63:f3:b7:f7:03:ed:22:dc:0f
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): c1:d5:a6:d0:e8:4e:fd:ff:65:57:00:bd:42:ce:64:96:a4:ae:c8:70
Fingerprint (sha256): 00:90:cb:a1:9f:5e:4c:87:ff:51:15:50:03:14:d2:bf:cf:4d:12:89:b7:a4:f0:c7:05:d8:7a:f6:2b:fb:38:b9
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate ris-store.its.yale.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ris-store.its.yale.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ris-store.its.yale.edu
Other certificates including the domain name yale.edu
(limited to 100 certificates)
5648269346603008-fe1.pantheonsite.io
ar2017hr.yale.edu
cds4.cvent.com
5730192894984192-fe4.pantheonsite.io
5732312192909312-fe3.pantheonsite.io
*.drama.yale.edu
stm.yale.edu
5651276360581120-fe3.pantheonsite.io
5640887774216192-fe4.pantheonsite.io
5635220564869120-fe4.pantheonsite.io
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5759522421342208-fe1.pantheonsite.io
5688555066097664-fe3.pantheonsite.io
*.dkw2.yale.edu
5755553334689792-fe2.pantheonsite.io
libapp-test.library.yale.edu
coupdebrass.sites.yale.edu
us.prod.campusgroups.com
5648554290839552-fe1.pantheonsite.io
www.yiorecruiting.invest.yale.edu
statml.yale.edu
www.sustainablefood.yale.edu
5633267831144448-fe1.pantheonsite.io
quarantine-tst.its.yale.edu
b3.shared.global.fastly.net
5649648836411392-fe3.pantheonsite.io
5732808731394048-fe3.pantheonsite.io
5723088213770240-fe3.pantheonsite.io
5724466092965888-fe4.pantheonsite.io
6328556195938304-fe4.pantheonsite.io
cluster.technolutions.net
5651276360581120-fe3.pantheonsite.io
mvms-tstp-ms.ps.yale.edu
yul-pres-tapi.library.yale.edu
5648269346603008-fe1.pantheonsite.io
tst.studyabroad.yale.edu
5714468482842624-fe4.pantheonsite.io
comitalab.yale.edu
ris-store.its.yale.edu
cluster3.technolutions.net
infoed-patch.its.yale.edu
5677090456207360-fe2.pantheonsite.io
stearnslab.yale.edu
5688290254520320-fe2.pantheonsite.io
5720929187397632-fe3.pantheonsite.io
cohoc-dev.its.yale.edu
us.prod.campusgroups.com
5643365030821888-fe1.pantheonsite.io
5745189578604544-fe1.pantheonsite.io
nartc.fcm.arizona.edu
rotc.yale.edu
5680876067225600-fe2.pantheonsite.io
calendar.sdzsafaripark.org
5746821397741568-fe3.pantheonsite.io
apply.nursing.yale.edu
5746821397741568-fe3.pantheonsite.io
application.mam.som.yale.edu
5633267831144448-fe1.pantheonsite.io
5648269346603008-fe1.pantheonsite.io
*.profile.yale.edu
sa105gl.wpc.edgecastcdn.net
5629935204958208-fe2.pantheonsite.io
5677303661068288-fe3.pantheonsite.io
5723088213770240-fe3.pantheonsite.io
5740315998683136-fe1.pantheonsite.io
tls.automattic.com
5648554290839552-fe1.pantheonsite.io
5743114304094208-fe3.pantheonsite.io
dev.psychologyfaculty.yale.edu
5738940401188864-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5640887774216192-fe4.pantheonsite.io
5719378301550592-fe3.pantheonsite.io
6208428913459200-fe4.pantheonsite.io
www.yhpstudentwaiver.yale.edu
effy.yale.edu
5766466041282560-fe4.pantheonsite.io
orbit.astronomy.yale.edu
yh-emposrp.yu.yale.edu
tst.cce.yalecollege.yale.edu
5755812509122560-fe2.pantheonsite.io
ebiz-vendor.yale.edu
application.mam.som.yale.edu
identity.yale.edu
5769623379116032-fe2.pantheonsite.io
cdrom-access.library.yale.edu
seas.yale.edu
designcop.yale.edu
5740240702537728-fe2.pantheonsite.io
5688555066097664-fe3.pantheonsite.io
cds4.cvent.com
uconnectlabs.com
5704837555552256-fe2.pantheonsite.io
5759522421342208-fe1.pantheonsite.io
5734616174428160-fe1.pantheonsite.io
cds4.cvent.com
ask.library.yale.edu
banking-business-review.com
yportal.yale.edu
ar2017hr.yale.edu
cds4.cvent.com
5730192894984192-fe4.pantheonsite.io
5732312192909312-fe3.pantheonsite.io
*.drama.yale.edu
stm.yale.edu
5651276360581120-fe3.pantheonsite.io
5640887774216192-fe4.pantheonsite.io
5635220564869120-fe4.pantheonsite.io
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5759522421342208-fe1.pantheonsite.io
5688555066097664-fe3.pantheonsite.io
*.dkw2.yale.edu
5755553334689792-fe2.pantheonsite.io
libapp-test.library.yale.edu
coupdebrass.sites.yale.edu
us.prod.campusgroups.com
5648554290839552-fe1.pantheonsite.io
www.yiorecruiting.invest.yale.edu
statml.yale.edu
www.sustainablefood.yale.edu
5633267831144448-fe1.pantheonsite.io
quarantine-tst.its.yale.edu
b3.shared.global.fastly.net
5649648836411392-fe3.pantheonsite.io
5732808731394048-fe3.pantheonsite.io
5723088213770240-fe3.pantheonsite.io
5724466092965888-fe4.pantheonsite.io
6328556195938304-fe4.pantheonsite.io
cluster.technolutions.net
5651276360581120-fe3.pantheonsite.io
mvms-tstp-ms.ps.yale.edu
yul-pres-tapi.library.yale.edu
5648269346603008-fe1.pantheonsite.io
tst.studyabroad.yale.edu
5714468482842624-fe4.pantheonsite.io
comitalab.yale.edu
ris-store.its.yale.edu
cluster3.technolutions.net
infoed-patch.its.yale.edu
5677090456207360-fe2.pantheonsite.io
stearnslab.yale.edu
5688290254520320-fe2.pantheonsite.io
5720929187397632-fe3.pantheonsite.io
cohoc-dev.its.yale.edu
us.prod.campusgroups.com
5643365030821888-fe1.pantheonsite.io
5745189578604544-fe1.pantheonsite.io
nartc.fcm.arizona.edu
rotc.yale.edu
5680876067225600-fe2.pantheonsite.io
calendar.sdzsafaripark.org
5746821397741568-fe3.pantheonsite.io
apply.nursing.yale.edu
5746821397741568-fe3.pantheonsite.io
application.mam.som.yale.edu
5633267831144448-fe1.pantheonsite.io
5648269346603008-fe1.pantheonsite.io
*.profile.yale.edu
sa105gl.wpc.edgecastcdn.net
5629935204958208-fe2.pantheonsite.io
5677303661068288-fe3.pantheonsite.io
5723088213770240-fe3.pantheonsite.io
5740315998683136-fe1.pantheonsite.io
tls.automattic.com
5648554290839552-fe1.pantheonsite.io
5743114304094208-fe3.pantheonsite.io
dev.psychologyfaculty.yale.edu
5738940401188864-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5640887774216192-fe4.pantheonsite.io
5719378301550592-fe3.pantheonsite.io
6208428913459200-fe4.pantheonsite.io
www.yhpstudentwaiver.yale.edu
effy.yale.edu
5766466041282560-fe4.pantheonsite.io
orbit.astronomy.yale.edu
yh-emposrp.yu.yale.edu
tst.cce.yalecollege.yale.edu
5755812509122560-fe2.pantheonsite.io
ebiz-vendor.yale.edu
application.mam.som.yale.edu
identity.yale.edu
5769623379116032-fe2.pantheonsite.io
cdrom-access.library.yale.edu
seas.yale.edu
designcop.yale.edu
5740240702537728-fe2.pantheonsite.io
5688555066097664-fe3.pantheonsite.io
cds4.cvent.com
uconnectlabs.com
5704837555552256-fe2.pantheonsite.io
5759522421342208-fe1.pantheonsite.io
5734616174428160-fe1.pantheonsite.io
cds4.cvent.com
ask.library.yale.edu
banking-business-review.com
yportal.yale.edu
Certificate
The complete raw certificate details for ris-store.its.yale.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGKjCCBRKgAwIBAgIMc3U+ZsTPna0pVZlFMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0xOTA3MDgxMDE2MTNaFw0y MTA3MDgxMDE2MTNaMHIxCzAJBgNVBAYTAlVTMRQwEgYDVQQIEwtDb25uZWN0aWN1 dDESMBAGA1UEBxMJTmV3IEhhdmVuMRgwFgYDVQQKEw9ZYWxlIFVuaXZlcnNpdHkx HzAdBgNVBAMTFnJpcy1zdG9yZS5pdHMueWFsZS5lZHUwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDDr+vE+oXBCg/Kv4EEftJ+rVU9O4VsIOGXA2ha/ezR BMV8guuS57h/yFxbbB+pjT/nUmGBoiHQmHfEeg9gmHJy5WGw/iOCRWXXVVy/VK5v QhQns8v/fDiBxddgcjBac88qfmyAmr2dpbd/DWMYZYpgEwzGmwAHSnqy4fQP7CrY al1cQjUiutcRvrBbvxIVS58Cd+EZiJg5U7sanYfTgAdgkSFd3WkfStBU4HUDMGKd dCH/0uooK0hU407U/L0BW5WqV35oQkH0rD2TQGLQX1W4iafkSQqSoDzgut21mY/1 8SrX1knATCcwpqYkXCPx5bBusHiN8+gDVNebaB7jZkkmvWXNojTJHf05FyBI7gbF zDLYzZwojYf5PSnUoGJAPfU1bVQzXWe3qg0eqANhaDixp4EZWImrcnvwviMtKOb0 eG6L0TyAesuEifupFJ+pqNKN/cTO/OGysdDtu9ztGCK1RpqIz+S+MD4eI06ScmWK JYyRTH+/P97s2he3PW26bIJZMKVrJAvqXewGHU+z+EdEdzcNQb5AGomu8cACEf/f 8NEbLTtsj2M+qQ12bORZPpYeLV1tr78iOOZPzJATzCE77LE5f2QNLiLtAF6ivdVm HonrpC5XZa/1u8KFz2liMr2Cq2u7dtcAzeRrGC2R2mHVnktOHxVyWq1mtH/infYV lQIDAQABo4IB4DCCAdwwDgYDVR0PAQH/BAQDAgWgMIGOBggrBgEFBQcBAQSBgTB/ MEQGCCsGAQUFBzAChjhodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2Vy dC9nc3JzYW92c3NsY2EyMDE4LmNydDA3BggrBgEFBQcwAYYraHR0cDovL29jc3Au Z2xvYmFsc2lnbi5jb20vZ3Nyc2FvdnNzbGNhMjAxODBWBgNVHSAETzBNMEEGCSsG AQQBoDIBFDA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNv bS9yZXBvc2l0b3J5LzAIBgZngQwBAgIwCQYDVR0TBAIwADA/BgNVHR8EODA2MDSg MqAwhi5odHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2dzcnNhb3Zzc2xjYTIwMTgu Y3JsMCEGA1UdEQQaMBiCFnJpcy1zdG9yZS5pdHMueWFsZS5lZHUwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFPjvf/LNeGeo3m+PJI2I 8YcDArPrMB0GA1UdDgQWBBQruuI0rI9XfmJYa2Pzt/cD7SLcDzATBgorBgEEAdZ5 AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbzzFIuBmkLEWEx6xXQiQcZF8 jkQD33928GrVp1UlODU612dOEMxQ4bINbiDet2WbWZPAjlMX2iQtKu8QPqCXdF63 JG+YafJc0wRsgKZfUiQj7IAxSSxXU6MwRgox/bY0CtuYw5ALBdIsbnDRhB71rijO gDiyEm9DZcDLoMlOrZvL1czkG9wkt9l22T8d9Ciy3qO0KAjRXJV4w7MIkTcNS3Eh vBV/6egEDbG8Fvq7V6UcwMO9gt+OcLQV+MZLk3xXDP2kMWAdKuL9vmVPSwJLBVGE 0yAFVR9k48gohxhWKdfx1t2Mwvw65a+U2ht/tLxvNG7kmUONW/k845yXa7iv9Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw6/rxPqFwQoPyr+BBH7S fq1VPTuFbCDhlwNoWv3s0QTFfILrkue4f8hcW2wfqY0/51JhgaIh0Jh3xHoPYJhy cuVhsP4jgkVl11Vcv1Sub0IUJ7PL/3w4gcXXYHIwWnPPKn5sgJq9naW3fw1jGGWK YBMMxpsAB0p6suH0D+wq2GpdXEI1IrrXEb6wW78SFUufAnfhGYiYOVO7Gp2H04AH YJEhXd1pH0rQVOB1AzBinXQh/9LqKCtIVONO1Py9AVuVqld+aEJB9Kw9k0Bi0F9V uImn5EkKkqA84LrdtZmP9fEq19ZJwEwnMKamJFwj8eWwbrB4jfPoA1TXm2ge42ZJ Jr1lzaI0yR39ORcgSO4Gxcwy2M2cKI2H+T0p1KBiQD31NW1UM11nt6oNHqgDYWg4 saeBGViJq3J78L4jLSjm9Hhui9E8gHrLhIn7qRSfqajSjf3EzvzhsrHQ7bvc7Rgi tUaaiM/kvjA+HiNOknJliiWMkUx/vz/e7NoXtz1tumyCWTClayQL6l3sBh1Ps/hH RHc3DUG+QBqJrvHAAhH/3/DRGy07bI9jPqkNdmzkWT6WHi1dba+/IjjmT8yQE8wh O+yxOX9kDS4i7QBeor3VZh6J66QuV2Wv9bvChc9pYjK9gqtru3bXAM3kaxgtkdph 1Z5LTh8VclqtZrR/4p32FZUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 35732515132821155071829317957 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-08 10:16:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-08 10:16:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Connecticut' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Haven' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Yale University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ris-store.its.yale.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 798334089200141610806168348436697731411738948617591987209734558149216071692747077535329507663905963049591583124467563000187262090297284038508590960755586305497547077028142959751370293024890309092012730044720778410886841562785559484748020027488895638665704119545649033775481548817988889734524619594419770767340746595396434232084577306099935855352287129378105683060763868427924568232756107986863327694636063967444219619845548325036793612997299327993892579153865925580488840522377732703114411946292019682062033435648426886999174601371779234512865421510910912094433437778231917306511033468407652393936109668394438312633912064728778339674929048552718269326643858287152901521030501576417955412480285341649932387690955768403683166560198035030025932889651610054960112767623290025687276525650996233303469891171629783737449951263756737334255724096813916152456510230638391168933075318505079484377970042962328389193411778473770772836763493158529278538990740081858091162990204746351042497713485134495831398854579074583905571565975356216766066695118594198239956642358627229661186678518094700463661758406584849866425882983170531705847301365240515071200099623270740347219144682933829243415779115665915708585208020924220494693459702843705866369504661 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ris-store.its.yale.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2bbae234ac8f577e62586b63f3b7f703ed22dc0f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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