cgi.math.princeton.edu
- The Trustees of Princeton University -
Issued by InCommon RSA Server CA 2
About this certificate
This digital certificate with serial number 4c:ee:c4:8d:66:06:b1:9e:8f:47:12:fc:0d:fe:d5:3e was issued on by Internet2.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
The Trustees of Princeton University
Organization:
The Trustees of Princeton University
State / Province:
New Jersey
Country: US
Country: US
Internet2
Organization:
Internet2
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 4c:ee:c4:8d:66:06:b1:9e:8f:47:12:fc:0d:fe:d5:3eSerial Number (int): 102261080887013688895426446961443525950
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: e0:0a:69:ef:c6:b7:35:8c:50:0d:89:6c:32:33:d2:69:9a:df:ad:41
AuthorityKeyId: ef:4c:00:92:a6:fb:76:2e:5e:95:e2:c9:5f:87:1b:19:d5:4d:e2:d9
Fingerprint (sha1): f2:c6:60:33:93:1b:e7:54:2d:9c:4e:24:9e:e9:44:4d:70:e2:66:78
Fingerprint (sha256): 00:d6:47:93:29:7d:a2:48:e6:f7:6e:63:16:a8:02:3a:4a:cf:4d:52:be:ec:8d:a4:dd:ac:53:f2:7b:1f:4b:6d
Issuing Certificate URL: http://crt.sectigo.com/InCommonRSAServerCA2.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/InCommonRSAServerCA2.crl
Check the revocation status for certificate cgi.math.princeton.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cgi.math.princeton.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cgi.math.princeton.edu
Other certificates including the domain name princeton.edu
(limited to 100 certificates)
libimages.princeton.edu
webspace.princeton.edu
5648269346603008-fe1.pantheonsite.io
svn.princeton.edu
msl.cs.princeton.edu
test-web-lws.edu.help
5729327995944960-fe3.pantheonsite.io
unsupervised.cs.princeton.edu
garlock.princeton.edu
filmstudies.princeton.edu
dss.cs.princeton.edu
aisob113w.princeton.edu
pemm.cdh.princeton.edu
us.prod.campusgroups.com
5739407210446848-fe1.pantheonsite.io
5701241594183680-fe4.pantheonsite.io
5764144745676800-fe3.pantheonsite.io
securesendqa.princeton.edu
proteomics-r.princeton.edu
deepcompletion.cs.princeton.edu
5739407210446848-fe1.pantheonsite.io
cluster3.technolutions.net
6328556195938304-fe4.pantheonsite.io
5769720821186560-fe3.pantheonsite.io
5648269346603008-fe1.pantheonsite.io
5757334940811264-fe4.pantheonsite.io
cluster3.technolutions.net
scholar.princeton.edu
5764144745676800-fe3.pantheonsite.io
5679413765079040-fe4.pantheonsite.io
interacdome.princeton.edu
us.prod.campusgroups.com
5691420614590464-fe3.pantheonsite.io
5664902681198592-fe4.pantheonsite.io
etc2.princeton.edu
nartc.fcm.arizona.edu
5685057352105984-fe4.pantheonsite.io
5730602795925504-fe1.pantheonsite.io
nphoto.cs.princeton.edu
5648269346603008-fe1.pantheonsite.io
dss.cs.princeton.edu
middleagesforeducators.princeton.edu
faces.cs.princeton.edu
cgi.math.princeton.edu
5707324073181184-fe2.pantheonsite.io
eos.cs.princeton.edu
5665370564198400-fe2.pantheonsite.io
5675267779461120-fe4.pantheonsite.io
patents.princeton.edu
5761253830033408-fe3.pantheonsite.io
lizard.princeton.edu
5764144745676800-fe3.pantheonsite.io
swebapps.princeton.edu
pac.cs.princeton.edu
das101w.princeton.edu
banking-business-review.com
5729327995944960-fe3.pantheonsite.io
5764144745676800-fe3.pantheonsite.io
5747976207073280-fe2.pantheonsite.io
class1985.tigernet.princeton.edu
5750031617359872-fe4.pantheonsite.io
tigernet.princeton.edu
uaps2007.princeton.edu
faces.cs.princeton.edu
5659313586569216-fe4.pantheonsite.io
gea.princeton.edu
5645784439586816-fe4.pantheonsite.io
*.ezproxy.princeton.edu
phubqa-vip2.princeton.edu
5163657986048000-fe4.pantheonsite.io
5631639635886080-fe4.pantheonsite.io
vst.cs.princeton.edu
gradfutures.princeton.edu
citeak.multidevcom.uaf.edu
psrc.princeton.edu
ais324l.princeton.edu
www.design-engineering.princeton.edu
5699257587728384-fe4.pantheonsite.io
5691420614590464-fe3.pantheonsite.io
5761253830033408-fe3.pantheonsite.io
smirk.cs.princeton.edu
5739407210446848-fe1.pantheonsite.io
cchri.princeton.edu
cluster3.technolutions.net
5739407210446848-fe1.pantheonsite.io
mediacentral.princeton.edu
nxterra.ucop.edu
5769720821186560-fe3.pantheonsite.io
tableaud.princeton.edu
obj-manip.cs.princeton.edu
lineshape.cs.princeton.edu
nyao.princeton.edu
dpd.cs.princeton.edu
deepcompletion.cs.princeton.edu
banking-business-review.com
5761253830033408-fe3.pantheonsite.io
5761253830033408-fe3.pantheonsite.io
5724313353191424-fe4.pantheonsite.io
opr.princeton.edu
5769720821186560-fe3.pantheonsite.io
webspace.princeton.edu
5648269346603008-fe1.pantheonsite.io
svn.princeton.edu
msl.cs.princeton.edu
test-web-lws.edu.help
5729327995944960-fe3.pantheonsite.io
unsupervised.cs.princeton.edu
garlock.princeton.edu
filmstudies.princeton.edu
dss.cs.princeton.edu
aisob113w.princeton.edu
pemm.cdh.princeton.edu
us.prod.campusgroups.com
5739407210446848-fe1.pantheonsite.io
5701241594183680-fe4.pantheonsite.io
5764144745676800-fe3.pantheonsite.io
securesendqa.princeton.edu
proteomics-r.princeton.edu
deepcompletion.cs.princeton.edu
5739407210446848-fe1.pantheonsite.io
cluster3.technolutions.net
6328556195938304-fe4.pantheonsite.io
5769720821186560-fe3.pantheonsite.io
5648269346603008-fe1.pantheonsite.io
5757334940811264-fe4.pantheonsite.io
cluster3.technolutions.net
scholar.princeton.edu
5764144745676800-fe3.pantheonsite.io
5679413765079040-fe4.pantheonsite.io
interacdome.princeton.edu
us.prod.campusgroups.com
5691420614590464-fe3.pantheonsite.io
5664902681198592-fe4.pantheonsite.io
etc2.princeton.edu
nartc.fcm.arizona.edu
5685057352105984-fe4.pantheonsite.io
5730602795925504-fe1.pantheonsite.io
nphoto.cs.princeton.edu
5648269346603008-fe1.pantheonsite.io
dss.cs.princeton.edu
middleagesforeducators.princeton.edu
faces.cs.princeton.edu
cgi.math.princeton.edu
5707324073181184-fe2.pantheonsite.io
eos.cs.princeton.edu
5665370564198400-fe2.pantheonsite.io
5675267779461120-fe4.pantheonsite.io
patents.princeton.edu
5761253830033408-fe3.pantheonsite.io
lizard.princeton.edu
5764144745676800-fe3.pantheonsite.io
swebapps.princeton.edu
pac.cs.princeton.edu
das101w.princeton.edu
banking-business-review.com
5729327995944960-fe3.pantheonsite.io
5764144745676800-fe3.pantheonsite.io
5747976207073280-fe2.pantheonsite.io
class1985.tigernet.princeton.edu
5750031617359872-fe4.pantheonsite.io
tigernet.princeton.edu
uaps2007.princeton.edu
faces.cs.princeton.edu
5659313586569216-fe4.pantheonsite.io
gea.princeton.edu
5645784439586816-fe4.pantheonsite.io
*.ezproxy.princeton.edu
phubqa-vip2.princeton.edu
5163657986048000-fe4.pantheonsite.io
5631639635886080-fe4.pantheonsite.io
vst.cs.princeton.edu
gradfutures.princeton.edu
citeak.multidevcom.uaf.edu
psrc.princeton.edu
ais324l.princeton.edu
www.design-engineering.princeton.edu
5699257587728384-fe4.pantheonsite.io
5691420614590464-fe3.pantheonsite.io
5761253830033408-fe3.pantheonsite.io
smirk.cs.princeton.edu
5739407210446848-fe1.pantheonsite.io
cchri.princeton.edu
cluster3.technolutions.net
5739407210446848-fe1.pantheonsite.io
mediacentral.princeton.edu
nxterra.ucop.edu
5769720821186560-fe3.pantheonsite.io
tableaud.princeton.edu
obj-manip.cs.princeton.edu
lineshape.cs.princeton.edu
nyao.princeton.edu
dpd.cs.princeton.edu
deepcompletion.cs.princeton.edu
banking-business-review.com
5761253830033408-fe3.pantheonsite.io
5761253830033408-fe3.pantheonsite.io
5724313353191424-fe4.pantheonsite.io
opr.princeton.edu
5769720821186560-fe3.pantheonsite.io
Certificate
The complete raw certificate details for cgi.math.princeton.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5zCCBU+gAwIBAgIQTO7EjWYGsZ6PRxL8Df7VPjANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSW50ZXJuZXQyMSEwHwYDVQQDExhJbkNv bW1vbiBSU0EgU2VydmVyIENBIDIwHhcNMjMxMjA0MDAwMDAwWhcNMjUwMTAzMjM1 OTU5WjByMQswCQYDVQQGEwJVUzETMBEGA1UECBMKTmV3IEplcnNleTEtMCsGA1UE ChMkVGhlIFRydXN0ZWVzIG9mIFByaW5jZXRvbiBVbml2ZXJzaXR5MR8wHQYDVQQD ExZjZ2kubWF0aC5wcmluY2V0b24uZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA29WwUxZdJXDs3s69XiraA/MtO98RGg/e5tanLrvFmCnrbhmt2D8W n3IhXgDx9kc86fqrw98rNyqWRzyqskPGHZXnLHbRbrzkiZtFCKR0bck2jnkxG5r+ 6Xpl9hYFiIl/hlHUbgT9NmIbgzZNA7YVY8oou5qLXa8lZzutXvVjpaclcw6kxp5C 7v/4jfGYsNF3Tzi9ZOSbYR6BLvKfOb55lsjlnMOlmUb5JYSZXK+WM7w6AZNs9VF5 K/2p3mdpEcPbjrRPQ1XW/z6eyl/9jcEPnL9YkUcZ1JsPrRnuZCaHRha4ve6uLM3g SaZ/QoRo7+/NoHw3BBUqlTgmjnTNIZVKlwIDAQABo4IDJTCCAyEwHwYDVR0jBBgw FoAU70wAkqb7di5eleLJX4cbGdVN4tkwHQYDVR0OBBYEFOAKae/GtzWMUA2JbDIz 0mma361BMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJnMCUw IwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBA BgNVHR8EOTA3MDWgM6Axhi9odHRwOi8vY3JsLnNlY3RpZ28uY29tL0luQ29tbW9u UlNBU2VydmVyQ0EyLmNybDBwBggrBgEFBQcBAQRkMGIwOwYIKwYBBQUHMAKGL2h0 dHA6Ly9jcnQuc2VjdGlnby5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQTIuY3J0MCMG CCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAhBgNVHREEGjAYghZj Z2kubWF0aC5wcmluY2V0b24uZWR1MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgA dwDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAYwyJjDRAAAEAwBI MEYCIQD1jReWGYHm34khBj58H+hc5VW0wfyBRO44D6BPFLZ6DwIhAOjncmwL3M+Y ui1XdbF8WfxID5YwZrDMMU12pgRtT0eFAHQAouMK5EXvva2bfjjtR2d3U9eCW4SU 1yteGyzEuVCkR+cAAAGMMiYxowAABAMARTBDAh8bSTSvDiaTv3tFOwtqor8qkNhG uylD3MJ6wD8Qm/ZZAiBKoaQtCWIvrsgv6TrdwoTgMpLTWY0sbQq0yf7K8JP5LgB3 AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjDImMSQAAAQDAEgw RgIhALSIqG0E4LLSe0I9aJi6X/RHwBE2Qe4qAfG324ReJ5xdAiEAwvEVSe4+2Wdj FWEigQIzd2X6slzgminFFkgmlGJdVDUwDQYJKoZIhvcNAQEMBQADggGBADi9kEu3 iey89lvlrlu+9M4vxyAbG+wiAgzA2OQdaL6o2c3VgyNDbVKBzxO6LwOGsJAANNBD JIz1f+73b2o4lFwdGSqsPPub2c/duHJ/SuvrMwTH9/jYD/4Z3DAGEo6i1RBBGUEJ NSlGuKjX+JMFZzosPJDPXrPFJYrjbXT20UCOvCihgC1NJmuOjeENmO436kXahcn4 5/CdreoGVHh5LCE7buylVBrsm3rZIOkaW36HiCBVKXo8+2ypYHel1VpWC5K+QMKy wleO311hFgUDW1gxexlIUBw/D9AMvPDTbm3Jv8MXljUVZNNaUIRxcO0VxrlOZyZk h0/dY9gpekHbL6QLEpxzfYfOIPDB7fq8R2GO3wMX9q28uUyt760N3ui4htITRpon vgs3M9c7/MMai3X8E9O2X7GsJf2e3mh17gOrUP6CyUP0Jl0oq7HnEWVUVu8tNLnR GPb4jqiwgjHz0lzbE71QT40GZSD87bU9Hs7MqmWr/M8dPZKCSO8HOZxKlQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29WwUxZdJXDs3s69Xira A/MtO98RGg/e5tanLrvFmCnrbhmt2D8Wn3IhXgDx9kc86fqrw98rNyqWRzyqskPG HZXnLHbRbrzkiZtFCKR0bck2jnkxG5r+6Xpl9hYFiIl/hlHUbgT9NmIbgzZNA7YV Y8oou5qLXa8lZzutXvVjpaclcw6kxp5C7v/4jfGYsNF3Tzi9ZOSbYR6BLvKfOb55 lsjlnMOlmUb5JYSZXK+WM7w6AZNs9VF5K/2p3mdpEcPbjrRPQ1XW/z6eyl/9jcEP nL9YkUcZ1JsPrRnuZCaHRha4ve6uLM3gSaZ/QoRo7+/NoHw3BBUqlTgmjnTNIZVK lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 102261080887013688895426446961443525950 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Trustees of Princeton University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cgi.math.princeton.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27751562646312671688108922385938004792237017518208818862080587525844405502605984589862233785909902399294606989925209052700872115600486037399065834464861931230681474244697570483039004588436709621977907162577883805022964052432115292997614254973209579490853215354416886168942389986744300905484694054047935879624147086329897988090070529897551183602679808798947514797440997720480170155938774203967117236594535671649798567996942110362533655506360050784349363959444859727618181196117811710945266544332799558390278705914896265579906279739148537392488365839962639144129900431587951917136071081632528906364874957175006338304663 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ef4c0092a6fb762e5e95e2c95f871b19d54de2d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e00a69efc6b7358c500d896c3233d2699adfad41 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.103 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/InCommonRSAServerCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/InCommonRSAServerCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cgi.math.princeton.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (3072 bits) 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