psgt.earth.lsa.umich.edu
- University of Michigan -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 14:a2:e6:d5:8a:22:d8:21:86:98:84:f0:77:a2:7b:80 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Michigan
Organization:
University of Michigan
Organization unit: Information Technology Services
Organization unit: Information Technology Services
State / Province:
Michigan
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 14:a2:e6:d5:8a:22:d8:21:86:98:84:f0:77:a2:7b:80Serial Number (int): 27430393879339470439213516021215427456
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: c4:03:b2:63:10:d1:bb:6f:e1:71:c6:48:01:17:97:35:8e:f2:a1:f0
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): f1:b0:29:8e:d4:39:d6:c3:91:e5:fd:07:b7:ea:73:8a:58:80:cb:5c
Fingerprint (sha256): 00:ae:e8:81:10:0e:fc:bd:a4:c2:59:83:68:85:ee:08:43:b3:b5:a0:e4:9d:55:01:72:45:54:f6:0c:66:f7:c6
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate psgt.earth.lsa.umich.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for psgt.earth.lsa.umich.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
psgt.earth.lsa.umich.edu
Other certificates including the domain name umich.edu
(limited to 100 certificates)
pconway.people.si.umich.edu
5708235679989760-fe2.pantheonsite.io
his-364y.hosp.med.umich.edu
*.pathology.med.umich.edu
clips.vpcomm.umich.edu
jealexa.people.si.umich.edu
cshl.engin.umich.edu
charvat.people.si.umich.edu
his-351t.hosp.med.umich.edu
staging.wdi.bus.umich.edu
ephraims.people.si.umich.edu
exchange.umich.edu
exp-e3-ext.med.umich.edu
paulscot.people.si.umich.edu
prodremedy.med.umich.edu
msnyd.people.si.umich.edu
uofmjosh.people.si.umich.edu
ppethick.people.si.umich.edu
clinicaltrials.med.umich.edu
margauxk.people.si.umich.edu
www.umms.med.umich.edu
its-thistle.adsroot.itcs.umich.edu
his-752y.hosp.med.umich.edu
keunhou.people.si.umich.edu
grip.umich.edu
carpepm.almonds.com
vidyo3.umms.med.umich.edu
remotesupport-qa.it.umich.edu
drgage.people.si.umich.edu
dkimme.people.si.umich.edu
accounts.itcs.umich.edu
sitemaker.umich.edu
gtabach.people.si.umich.edu
his-788y.hosp.med.umich.edu
maggiel.people.si.umich.edu
kencald.people.si.umich.edu
seas.umich.edu
message.umich.edu
joshilyn.people.si.umich.edu
mcneilgroup.chem.lsa.umich.edu
mjcantle.people.si.umich.edu
kunsingh.people.si.umich.edu
kafedewa.people.si.umich.edu
yuchengh.people.si.umich.edu
it.umich.edu
haoyoliu.people.si.umich.edu
fentonic.people.si.umich.edu
his-374x.hosp.med.umich.edu
quant.sites.uofmhosting.net
earnestw.people.si.umich.edu
anjshah.people.si.umich.edu
chowcy.people.si.umich.edu
chollad.people.si.umich.edu
swborders.sites.uofmhosting.net
alicla.people.si.umich.edu
5708235679989760-fe2.pantheonsite.io
jobs.alumni.umich.edu
jpasche.people.si.umich.edu
quadrangle.law.umich.edu
mibytes.eecs.umich.edu
bssp.sites.uofmhosting.net
bmes.bme.umich.edu
nabgilby.people.si.umich.edu
www-a1.lsa.umich.edu
yunchang.people.si.umich.edu
tle.soe.umich.edu
veenap.people.si.umich.edu
mottgolf.sites.uofmhosting.net
kessen.people.si.umich.edu
api-esb.it.umich.edu
uprint.umd.umich.edu
crtye.people.si.umich.edu
hsseo.people.si.umich.edu
mlearningreports.med.umich.edu
eecs494-server-b.eecs.umich.edu
jjstant.people.si.umich.edu
bthoma.people.si.umich.edu
abudziak.people.si.umich.edu
msis.med.umich.edu
phzhao.people.si.umich.edu
umchina.umich.edu
5708235679989760-fe2.pantheonsite.io
wgluc.people.si.umich.edu
cluster3.technolutions.net
clasp-research.engin.umich.edu
cryoem.lsi.umich.edu
yckuo.people.si.umich.edu
mobley.lab.medicine.umich.edu
lila.rad.med.umich.edu
cjburwe.people.si.umich.edu
pratapak.people.si.umich.edu
campaign.law.umich.edu
chhecht.people.si.umich.edu
prt-819y.prt.med.umich.edu
shihyi.people.si.umich.edu
chirayil.people.si.umich.edu
ericroth.people.si.umich.edu
studentemployment.umich.edu
psgt.earth.lsa.umich.edu
desigosys2.med.umich.edu
5708235679989760-fe2.pantheonsite.io
his-364y.hosp.med.umich.edu
*.pathology.med.umich.edu
clips.vpcomm.umich.edu
jealexa.people.si.umich.edu
cshl.engin.umich.edu
charvat.people.si.umich.edu
his-351t.hosp.med.umich.edu
staging.wdi.bus.umich.edu
ephraims.people.si.umich.edu
exchange.umich.edu
exp-e3-ext.med.umich.edu
paulscot.people.si.umich.edu
prodremedy.med.umich.edu
msnyd.people.si.umich.edu
uofmjosh.people.si.umich.edu
ppethick.people.si.umich.edu
clinicaltrials.med.umich.edu
margauxk.people.si.umich.edu
www.umms.med.umich.edu
its-thistle.adsroot.itcs.umich.edu
his-752y.hosp.med.umich.edu
keunhou.people.si.umich.edu
grip.umich.edu
carpepm.almonds.com
vidyo3.umms.med.umich.edu
remotesupport-qa.it.umich.edu
drgage.people.si.umich.edu
dkimme.people.si.umich.edu
accounts.itcs.umich.edu
sitemaker.umich.edu
gtabach.people.si.umich.edu
his-788y.hosp.med.umich.edu
maggiel.people.si.umich.edu
kencald.people.si.umich.edu
seas.umich.edu
message.umich.edu
joshilyn.people.si.umich.edu
mcneilgroup.chem.lsa.umich.edu
mjcantle.people.si.umich.edu
kunsingh.people.si.umich.edu
kafedewa.people.si.umich.edu
yuchengh.people.si.umich.edu
it.umich.edu
haoyoliu.people.si.umich.edu
fentonic.people.si.umich.edu
his-374x.hosp.med.umich.edu
quant.sites.uofmhosting.net
earnestw.people.si.umich.edu
anjshah.people.si.umich.edu
chowcy.people.si.umich.edu
chollad.people.si.umich.edu
swborders.sites.uofmhosting.net
alicla.people.si.umich.edu
5708235679989760-fe2.pantheonsite.io
jobs.alumni.umich.edu
jpasche.people.si.umich.edu
quadrangle.law.umich.edu
mibytes.eecs.umich.edu
bssp.sites.uofmhosting.net
bmes.bme.umich.edu
nabgilby.people.si.umich.edu
www-a1.lsa.umich.edu
yunchang.people.si.umich.edu
tle.soe.umich.edu
veenap.people.si.umich.edu
mottgolf.sites.uofmhosting.net
kessen.people.si.umich.edu
api-esb.it.umich.edu
uprint.umd.umich.edu
crtye.people.si.umich.edu
hsseo.people.si.umich.edu
mlearningreports.med.umich.edu
eecs494-server-b.eecs.umich.edu
jjstant.people.si.umich.edu
bthoma.people.si.umich.edu
abudziak.people.si.umich.edu
msis.med.umich.edu
phzhao.people.si.umich.edu
umchina.umich.edu
5708235679989760-fe2.pantheonsite.io
wgluc.people.si.umich.edu
cluster3.technolutions.net
clasp-research.engin.umich.edu
cryoem.lsi.umich.edu
yckuo.people.si.umich.edu
mobley.lab.medicine.umich.edu
lila.rad.med.umich.edu
cjburwe.people.si.umich.edu
pratapak.people.si.umich.edu
campaign.law.umich.edu
chhecht.people.si.umich.edu
prt-819y.prt.med.umich.edu
shihyi.people.si.umich.edu
chirayil.people.si.umich.edu
ericroth.people.si.umich.edu
studentemployment.umich.edu
psgt.earth.lsa.umich.edu
desigosys2.med.umich.edu
Certificate
The complete raw certificate details for psgt.earth.lsa.umich.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG4DCCBcigAwIBAgIQFKLm1Yoi2CGGmITwd6J7gDANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMjA2MjAwMDAwMDBaFw0yMzA3MjEy MzU5NTlaMIGOMQswCQYDVQQGEwJVUzERMA8GA1UECBMITWljaGlnYW4xHzAdBgNV BAoTFlVuaXZlcnNpdHkgb2YgTWljaGlnYW4xKDAmBgNVBAsTH0luZm9ybWF0aW9u IFRlY2hub2xvZ3kgU2VydmljZXMxITAfBgNVBAMTGHBzZ3QuZWFydGgubHNhLnVt aWNoLmVkdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPWxD1m6vsJZ 3hmfIMO/ie4OfqeCXnu44y8x9mv/oudC24y10ytxvYC1sy8r313pAoQAZDpvHNN+ k4rEoLUelbK7gajVtgSOwDSnYxF9rJ4eXAubbepPddJzklNGIqTABYx2yXwYxSH7 gxjZ0fTZ7dEghz0QJ4TAQEvSNU8nXv7h1XzCTbuuCR+dsKi/mZDKWPgNqNwxRO1c NQ80tuL1RzptdI+EsdFOLkWnZML+7/3R6f8bxIGej8Bs4+WkenvXRh+6+IWPdOSP LZYOjQADFmafFhkRqACeq2aW2thaAlE/CUTnXtrOTXVp/a83GhWcavrQ4480vItw FmpQxIIRzwUCAwEAAaOCA08wggNLMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSG rHEADOc4MB0GA1UdDgQWBBTEA7JjENG7b+FxxkgBF5c1jvKh8DAOBgNVHQ8BAf8E BAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwZwYDVR0gBGAwXjBSBgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0 cHM6Ly93d3cuaW5jb21tb24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBk ZjAIBgZngQwBAgIwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1v bi1yc2Eub3JnL0luQ29tbW9uUlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkw ZzA+BggrBgEFBQcwAoYyaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9u UlNBU2VydmVyQ0FfMi5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0 cnVzdC5jb20wIwYDVR0RBBwwGoIYcHNndC5lYXJ0aC5sc2EudW1pY2guZWR1MIIB fwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwCt9776fP8QyIudPZwePhhqtGcpXc+x DCTKhYY069yCigAAAYGCgfYiAAAEAwBIMEYCIQCwEJ1taeFhiAEPe/fxnGwWK6oc b4bmTfP4YvU9X8HJEwIhAPfDrJnqn4c6Ij/3RPiJhxmKqMNn+KucQVmuiXU1sx0N AHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGBgoH2PgAABAMA RzBFAiEA0MyrN3vC6K61ekaNaTDPyx6+Mu4Fh+MOm7ckB+olIwUCIA4rMZAqIaOO /230yeXmcvYFhAsHu6fnzro491sO2XOlAHYA6D7Q2j71BjUy51covIlryQPTy9ER a+zraeF3fW0GvW4AAAGBgoH1/wAABAMARzBFAiEAiR5VjwV8U/yejVDB2dkCIF8w NhvLaARi6ozOu0jpnkECIDWJcYLl2jNL598nRe2tYojpyrSRsXiKRlu8vq2h2YuO MA0GCSqGSIb3DQEBCwUAA4IBAQBhvZHN44yZYuNwuEmNgaDvEzcrpgn32A/upvpU O06PqVRlKYVh+lMqCSEYASjqu4BRPkV5AKBvl8w8i7cATbhX3VZHK3bmbbdWsLRk RoRbmDERZVHF79Ua2MAinUfgVPKyatwAuGvGlPRQPynopaTiIOx2wdIZTLRCTqZN 4FjQ4ItYXYpjTOb7Y2SApqNbicMkgyGP9GL9oMknKnEOS4GgRmMVosMjRCe+xd5F qXp7fAS55+EfQ/ui5Ri2UhIl3MBzYy2eytvVo3SMngEVwoHbLuPnmIZ5/isBU8by WYmONAIfFTGrUEbhTS3kA5EB8py6qkE7ZY5w+8kvDLC5LKls -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9bEPWbq+wlneGZ8gw7+J 7g5+p4Jee7jjLzH2a/+i50LbjLXTK3G9gLWzLyvfXekChABkOm8c036TisSgtR6V sruBqNW2BI7ANKdjEX2snh5cC5tt6k910nOSU0YipMAFjHbJfBjFIfuDGNnR9Nnt 0SCHPRAnhMBAS9I1Tyde/uHVfMJNu64JH52wqL+ZkMpY+A2o3DFE7Vw1DzS24vVH Om10j4Sx0U4uRadkwv7v/dHp/xvEgZ6PwGzj5aR6e9dGH7r4hY905I8tlg6NAAMW Zp8WGRGoAJ6rZpba2FoCUT8JROde2s5NdWn9rzcaFZxq+tDjjzS8i3AWalDEghHP BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 27430393879339470439213516021215427456 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'psgt.earth.lsa.umich.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31015696238541798345525810327243042013708556650589028732150461275933578959328922964613813780795711041676153876926622387724073371658406604389820233343825452680007007120640442635914032341087368733424925566622697702385029887787524770555116458744793055200690809476407285229804864577894537811434820753698116499957608654577761058528475195961129576586983213579773759834465041376567014271443420926284245718283608891912433709701111855837171987400321967699875590021881680358687786509374922694180832321960424208057443782322088771196069102344514336491518078857531456049412547530504768216423712789851719650188304550589446032051973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c403b26310d1bb6fe171c648011797358ef2a1f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psgt.earth.lsa.umich.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0061bd91cde38c9962e370b8498d81a0ef13372ba609f7d80feea6fa543b4e8fa95465298561fa532a0921180128eabb80513e457900a06f97cc3c8bb7004db857dd56472b76e66db756b0b46446845b9831116551c5efd51ad8c0229d47e054f2b26adc00b86bc694f4503f29e8a5a4e220ec76c1d2194cb4424ea64de058d0e08b585d8a634ce6fb636480a6a35b89c32483218ff462fda0c9272a710e4b81a0466315a2c3234427bec5de45a97a7b7c04b9e7e11f43fba2e518b6521225dcc073632d9ecadbd5a3748c9e0115c281db2ee3e7988679fe2b0153c6f259898e34021f1531ab5046e14d2de4039101f29cbaaa413b658e70fbc92f0cb0b92ca96c