ldap3.ncsa.illinois.edu
- University of Illinois -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 17:f8:78:8b:b6:9f:d9:8e:40:81:22:24:39:09:75:bb was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Illinois
Organization:
University of Illinois
State / Province:
Illinois
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 17:f8:78:8b:b6:9f:d9:8e:40:81:22:24:39:09:75:bbSerial Number (int): 31862378482356248382272928204708214203
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: aa:9b:59:cc:5c:0d:67:64:d5:4c:cc:b5:9a:eb:39:79:78:79:fc:5b
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): a9:d7:c8:d7:d2:5f:81:fb:1d:5d:3b:93:27:c4:45:2d:d5:4d:8f:3f
Fingerprint (sha256): 00:a9:36:40:87:4c:ea:ec:05:65:bb:ab:c0:50:e7:9d:ff:7a:84:23:57:f5:2a:cc:17:2e:12:d0:b0:b2:6a:9b
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate ldap3.ncsa.illinois.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ldap3.ncsa.illinois.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ldap3.ncsa.illinois.edu
Other certificates including the domain name illinois.edu
(limited to 100 certificates)
sandratest.web.illinois.edu
charans2.web.illinois.edu
demosite1.test.web.illinois.edu
tls.automattic.com
trubach.dev.web.illinois.edu
rgonig2.web.illinois.edu
clacs.illinois.edu
atlasweb16dev.ad.uillinois.edu
acounttestcp.web.illinois.edu
schrage4.web.illinois.edu
jakramer4321.dev.web.illinois.edu
preview.housing.illinois.edu
prd-crt01.publish.illinois.edu
sswdirectory.test.web.illinois.edu
us.prod.campusgroups.com
formalmethods.web.engr.illinois.edu
nbatura.web.illinois.edu
secure.aces.illinois.edu
jhd2.web.illinois.edu
wennebo1.test.web.illinois.edu
oea.illinois.edu
itprosbutler1cus.dev.web.illinois.edu
vassily2.web.engr.illinois.edu
torrellas.web.illinois.edu
ywang298.web.engr.illinois.edu
ics-test.sbutler1.dev.web.illinois.edu
auditorymodels.web.engr.illinois.edu
fin580.business.illinois.edu
ie07.ncsa.illinois.edu
amberg4.web.illinois.edu
gargoyle.uni.illinois.edu
employment.web.illinois.edu
itprobinaldscus.web.illinois.edu
dxl.ncsa.illinois.edu
sbutler1.test.web.illinois.edu
cluster3.technolutions.net
netmath.illinois.edu
uawasth2.web.illinois.edu
mcarrasco.web.illinois.edu
mail.mste.illinois.edu
distributedmuseum.illinois.edu
jzcapaprod.web.illinois.edu
plusc1cus.dev.web.illinois.edu
wmsjdees1.web.illinois.edu
cbitraining.web.illinois.edu
caesar.web.engr.illinois.edu
5635093192245248-fe3.pantheonsite.io
cloudbroker-qa.cites.illinois.edu
cluster3.technolutions.net
web.illinois.edu
its-repo.ncsa.illinois.edu
contextual.web.illinois.edu
faa.illinois.edu
bretl.csl.illinois.edu
nextcourses.illinois.edu
us.prod.campusgroups.com
my.lis.illinois.edu
stuckexchange.web.illinois.edu
ldap3.ncsa.illinois.edu
pts.learn.illinois.edu
nikhilm3.web.illinois.edu
studentcode.illinois.edu
test.english.illinois.edu
petgooooo.web.illinois.edu
web.engr.illinois.edu
meganlm2.web.illinois.edu
tuncay2.test.web.illinois.edu
sse.illinois.edu
mail.opia.illinois.edu
cthulhu.cropsciences.illinois.edu
tbp.ec.illinois.edu
pubsplus.illinois.edu
autotestdrupal.web.illinois.edu
itproklangcus.dev.web.illinois.edu
test.frit.illinois.edu
itproklangcus.web.illinois.edu
cspurce2.web.illinois.edu
vetmed.illinois.edu
sbutler1.web.illinois.edu
teamrockettest.test.web.illinois.edu
eohlive2018.web.engr.illinois.edu
mr-dev.atlas.illinois.edu
psaap.anthro.illinois.edu
site-maint.itcs.illinois.edu
etdtest.ideals.illinois.edu
demosite2.test.web.illinois.edu
peterarest.web.illinois.edu
gvserver.inhs.illinois.edu
illinilarp.web.illinois.edu
jmeid2.web.illinois.edu
wiki.cigi.illinois.edu
cgs.illinois.edu
images.publicaffairs.illinois.edu
tulshib2.web.engr.illinois.edu
jakemullen.web.illinois.edu
crt05.prd-letsencrypt.publish.illinois.edu
isws-data.web.illinois.edu
baylislab.ace.illinois.edu
researchpark.illinois.edu
engr-web-01.engr.illinois.edu
charans2.web.illinois.edu
demosite1.test.web.illinois.edu
tls.automattic.com
trubach.dev.web.illinois.edu
rgonig2.web.illinois.edu
clacs.illinois.edu
atlasweb16dev.ad.uillinois.edu
acounttestcp.web.illinois.edu
schrage4.web.illinois.edu
jakramer4321.dev.web.illinois.edu
preview.housing.illinois.edu
prd-crt01.publish.illinois.edu
sswdirectory.test.web.illinois.edu
us.prod.campusgroups.com
formalmethods.web.engr.illinois.edu
nbatura.web.illinois.edu
secure.aces.illinois.edu
jhd2.web.illinois.edu
wennebo1.test.web.illinois.edu
oea.illinois.edu
itprosbutler1cus.dev.web.illinois.edu
vassily2.web.engr.illinois.edu
torrellas.web.illinois.edu
ywang298.web.engr.illinois.edu
ics-test.sbutler1.dev.web.illinois.edu
auditorymodels.web.engr.illinois.edu
fin580.business.illinois.edu
ie07.ncsa.illinois.edu
amberg4.web.illinois.edu
gargoyle.uni.illinois.edu
employment.web.illinois.edu
itprobinaldscus.web.illinois.edu
dxl.ncsa.illinois.edu
sbutler1.test.web.illinois.edu
cluster3.technolutions.net
netmath.illinois.edu
uawasth2.web.illinois.edu
mcarrasco.web.illinois.edu
mail.mste.illinois.edu
distributedmuseum.illinois.edu
jzcapaprod.web.illinois.edu
plusc1cus.dev.web.illinois.edu
wmsjdees1.web.illinois.edu
cbitraining.web.illinois.edu
caesar.web.engr.illinois.edu
5635093192245248-fe3.pantheonsite.io
cloudbroker-qa.cites.illinois.edu
cluster3.technolutions.net
web.illinois.edu
its-repo.ncsa.illinois.edu
contextual.web.illinois.edu
faa.illinois.edu
bretl.csl.illinois.edu
nextcourses.illinois.edu
us.prod.campusgroups.com
my.lis.illinois.edu
stuckexchange.web.illinois.edu
ldap3.ncsa.illinois.edu
pts.learn.illinois.edu
nikhilm3.web.illinois.edu
studentcode.illinois.edu
test.english.illinois.edu
petgooooo.web.illinois.edu
web.engr.illinois.edu
meganlm2.web.illinois.edu
tuncay2.test.web.illinois.edu
sse.illinois.edu
mail.opia.illinois.edu
cthulhu.cropsciences.illinois.edu
tbp.ec.illinois.edu
pubsplus.illinois.edu
autotestdrupal.web.illinois.edu
itproklangcus.dev.web.illinois.edu
test.frit.illinois.edu
itproklangcus.web.illinois.edu
cspurce2.web.illinois.edu
vetmed.illinois.edu
sbutler1.web.illinois.edu
teamrockettest.test.web.illinois.edu
eohlive2018.web.engr.illinois.edu
mr-dev.atlas.illinois.edu
psaap.anthro.illinois.edu
site-maint.itcs.illinois.edu
etdtest.ideals.illinois.edu
demosite2.test.web.illinois.edu
peterarest.web.illinois.edu
gvserver.inhs.illinois.edu
illinilarp.web.illinois.edu
jmeid2.web.illinois.edu
wiki.cigi.illinois.edu
cgs.illinois.edu
images.publicaffairs.illinois.edu
tulshib2.web.engr.illinois.edu
jakemullen.web.illinois.edu
crt05.prd-letsencrypt.publish.illinois.edu
isws-data.web.illinois.edu
baylislab.ace.illinois.edu
researchpark.illinois.edu
engr-web-01.engr.illinois.edu
Certificate
The complete raw certificate details for ldap3.ncsa.illinois.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHsTCCBpmgAwIBAgIQF/h4i7af2Y5AgSIkOQl1uzANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMjEyMjUwMDAwMDBaFw0yNDAxMjUy MzU5NTlaMGMxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhJbGxpbm9pczEfMB0GA1UE ChMWVW5pdmVyc2l0eSBvZiBJbGxpbm9pczEgMB4GA1UEAxMXbGRhcDMubmNzYS5p bGxpbm9pcy5lZHUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCo4VOv pKqSus2b9714gugz1uGXZ8Iqch9xG04UI9wrdSBS0Ay/741/m1NsfVb2GVKzH4jG tZLqD04OReF4gm1LNWiRbfqrQ0SxMyg62ylM43IiJbuhBKaTr0xV75IwRDyJEDBW QQ3u+c8s1O43HKv2NSq8GjeWVCYmuGFaHfptm1ohPY1AeTkxd9RyFxTNL46JFcjD vXu2VfZYwkezUMdWpsOzw3ogRMWwU0lghj4A+YfGx+qBw99J/d+V99d+hTcGHEGU svE3EGo0zugMFUhLfttgW1LFdIi2N6X/hrNL7I8K+Y5s2GsETdyVbar35LBnUODv IZj2q4qtFpftgBZ8NOESzvMN1EFeZdmjMWQ66uyj9qJzRYgi+6iryaXQ9J4xQ+B4 ewGXzhhOlvci6kilVsn5WF9EeL4kbawJBlpn4lu8kRx0rS4WW5Z2Q+vDp5tc90lf bhrg30nsb9wVoCwYwW4JqfaEfFErJUxAW58pb6osA+9St6wkN1I6Xd3BHd2MPkVr pkHTkyKVGMA+9qycH63vd+zAn54q8loe/TOuS+YbbAsY0luI93hty3WaZTLlNeNA 1WDKrkqNtGHrAtr4PSTSEmCAD8IVf+HkxPv4iCDKRyfn/u0fp+DtgZDrvUDZxMBW BzMeXxK9h9dmSS6VwyyKYsPDa+IC4bilogcFbwIDAQABo4IDTDCCA0gwHwYDVR0j BBgwFoAUHgWjd49sluJbh0umtIascQAM5zgwHQYDVR0OBBYEFKqbWcxcDWdk1UzM tZrrOXl4efxbMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMB ATBCMEAGCCsGAQUFBwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9y ZXBvc2l0b3J5L2Nwc19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1 hjNodHRwOi8vY3JsLmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJD QS5jcmwwdQYIKwYBBQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVz ZXJ0cnVzdC5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcw AYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTAiBgNVHREEGzAZghdsZGFwMy5u Y3NhLmlsbGlub2lzLmVkdTCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUAdv+I Pwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGFRp75HQAABAMARjBEAiBs iHbLDFDocLLrz1/SQImklTHguxaVzkSoWP4c2LfqkwIgd8mQg1NrmJmN54E5p9Y9 ATjb7XP9sb6OrFkZZCh2LNAAdQDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0w SNf7qwAAAYVGnvkuAAAEAwBGMEQCIE87k5t/yIU3G1JXMjcblL1GWmPrPayY2NVp deo4AYr0AiBGyCkNqDfshc32XNkn417xgqG129KOrEnJUfwoxtVpgQB3AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABhUae+QAAAAQDAEgwRgIhAJzt GgidNZYAcHcKS/fAPpG7euJUtn5YQhd6pc78G4xtAiEA5/RERaLtgY+PE/TdPKl/ I9rXmQHbvJHYvNmMLpK+zDgwDQYJKoZIhvcNAQELBQADggEBAEAPlx/hbX9sBCRc TW8hXpK2nqErsWQOG4FXTx+vhMqJjqYpM6Jda3S1OVTw08UJyIgaS97EdhARcW0h 5DSIBFvS8pvnVWUwOf+FIZS5S5ll5ZaK9U91UeCZd7YJ8TAdEtf5c5F5/S2/VjTg 4Q+86yIH8H9MaeBwVUoCbukQHct9OeYR2igLx29tw4HnVHiwMKRXH/b+4t1ne5VZ WpmYfKLXc9XS7XTew399eYPDmkrLoa/Hzx9lZaDOXSmLTRKgGIFKsE++8I/0MEko BYC6YPJmJFp9b5zuCRBcDq3ZNqm6lMQggsLRy7xIx7uDI1IdbHMHwy6FhjNoxlkZ SwfjZFQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqOFTr6SqkrrNm/e9eILo M9bhl2fCKnIfcRtOFCPcK3UgUtAMv++Nf5tTbH1W9hlSsx+IxrWS6g9ODkXheIJt SzVokW36q0NEsTMoOtspTONyIiW7oQSmk69MVe+SMEQ8iRAwVkEN7vnPLNTuNxyr 9jUqvBo3llQmJrhhWh36bZtaIT2NQHk5MXfUchcUzS+OiRXIw717tlX2WMJHs1DH VqbDs8N6IETFsFNJYIY+APmHxsfqgcPfSf3flffXfoU3BhxBlLLxNxBqNM7oDBVI S37bYFtSxXSItjel/4azS+yPCvmObNhrBE3clW2q9+SwZ1Dg7yGY9quKrRaX7YAW fDThEs7zDdRBXmXZozFkOurso/aic0WIIvuoq8ml0PSeMUPgeHsBl84YTpb3IupI pVbJ+VhfRHi+JG2sCQZaZ+JbvJEcdK0uFluWdkPrw6ebXPdJX24a4N9J7G/cFaAs GMFuCan2hHxRKyVMQFufKW+qLAPvUresJDdSOl3dwR3djD5Fa6ZB05MilRjAPvas nB+t73fswJ+eKvJaHv0zrkvmG2wLGNJbiPd4bct1mmUy5TXjQNVgyq5KjbRh6wLa +D0k0hJggA/CFX/h5MT7+Iggykcn5/7tH6fg7YGQ671A2cTAVgczHl8SvYfXZkku lcMsimLDw2viAuG4paIHBW8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 31862378482356248382272928204708214203 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ldap3.ncsa.illinois.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 688971037592501875345784119656612329922931507956567551350279013297767120379342626559059267545095590502300581653186060968072194234887287216215213039786898415833473376502832591593775482681572820137002964814465030553579470538852441123573417630116726919723391430194770168537534013183093675816410959785621323905059599814413273454631070701779940611454050329932764003256768936684400596050529651286069643744821218239652283902399865473944479427962786914129210560632479127111025923740428873656237002910027260549354409070390777791355967681972469566465828257694090568062901776029675844245996680256684760354007591529267357140004868935214855173527729727207489614915165244431227858150206872019990852602412050879072678940774592566048386225242369115178177911563388419863876784983443814605057862261862605807024040672274010516581253929801787908764458711454009761441823129704427736793685701628800034156744244899703209828216526403408355032234243031889150392321500333690874629718461267754879685945605406146416587611935936821765773431363168364876668787747440992836721695094691827754112125898063223659605786071247947669233043355947429988309499344072894894564334923692406420866453067185909163712135343811405648526914776754761288069403889785798575012922721647 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa9b59cc5c0d6764d54cccb59aeb39797879fc5b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap3.ncsa.illinois.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 016700750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a7400000185469ef91d000004030046304402206c8876cb0c50e870b2ebcf5fd24089a49531e0bb1695ce44a858fe1cd8b7ea93022077c99083536b98998de78139a7d63d0138dbed73fdb1be8eac59196428762cd0007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000185469ef92e000004030046304402204f3b939b7fc885371b525732371b94bd465a63eb3dac98d8d56975ea38018af4022046c8290da837ec85cdf65cd927e35ef182a1b5dbd28eac49c951fc28c6d56981007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000185469ef90000000403004830460221009ced1a089d35960070770a4bf7c03e91bb7ae254b67e5842177aa5cefc1b8c6d022100e7f44445a2ed818f8f13f4dd3ca97f23dad79901dbbc91d8bcd98c2e92becc38 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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