vcm-24408.vm.duke.edu
- Duke University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 7d:a7:94:f3:b8:ac:0b:54:a4:ed:ec:cc:8f:dc:12:52 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Duke University
Organization:
Duke University
Organization unit: OIT
Organization unit: OIT
State / Province:
North Carolina
Locality: Durham
Country: US
Locality: Durham
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 7d:a7:94:f3:b8:ac:0b:54:a4:ed:ec:cc:8f:dc:12:52Serial Number (int): 167023634154707862295940692822533608018
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: a8:33:c5:5e:cf:a0:22:91:29:8d:92:20:e0:7d:ae:2d:b2:c3:e9:7d
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): db:66:cc:fd:4a:94:c2:e0:11:82:a4:18:2a:ef:04:b6:5a:15:71:e1
Fingerprint (sha256): 01:08:a3:f1:c4:7e:85:88:b4:67:7d:80:d0:8e:ab:19:b1:ef:60:e0:33:4b:9c:6a:2a:b9:d1:d4:99:db:7b:00
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate vcm-24408.vm.duke.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vcm-24408.vm.duke.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vcm-24408.vm.duke.edu
Other certificates including the domain name duke.edu
(limited to 100 certificates)
solr.oit.duke.edu
eam-app-test-01.oit.duke.edu
statuspage.io
www1-stage.fuqua.duke.edu
stream.fuqua.duke.edu
vlp-orimrh001.dhe.duke.edu
vcm-7069.vm.duke.edu
rapid-936.vm.duke.edu
vcm-5696.vm.duke.edu
stiffrobertslab.pratt.duke.edu
inform4-edc-qc.dcri.duke.edu
vcm-6141.vm.duke.edu
fitz-cups-01.oit.duke.edu
vcm-4779.vm.duke.edu
sakai.duke.edu
trivedi.pratt.duke.edu
inform46-aq52-qc.dcri.duke.edu
statuspage.io
dws-e.oit.duke.edu
statuspage.io
web.visaservices.duke.edu
patty.dnec.duke.edu
www.dukephoto.duke.edu
alsclinic.duke.edu
cluster.technolutions.net
oriapps.duhs.duke.edu
statuspage.io
ccbb.duke.edu
dukecapitalpartners.duke.edu
cpe-bach-multi1.trinity.duke.edu
projects.law.duke.edu
connect.ssri.duke.edu
work.duke.edu
gartner.oit.duke.edu
vcm-6535.vm.duke.edu
go.fuqua.duke.edu
queerhistory.duke.edu
communications.hr.duke.edu
vcm-6503.vm.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-4198.vm.duke.edu
maestro-hsw.duhs.duke.edu
dcid.sanford.duke.edu
web.visaservices.duke.edu
recreation.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-5257.vm.duke.edu
vcm-5238.vm.duke.edu
vcm-12275.vm.duke.edu
www.fuquaworld.duke.edu
iqaapp.dhvi.duke.edu
yt-cs216.cs.duke.edu
andererseits.library.duke.edu
appledore2.notes.duke.edu
payments.tip.duke.edu
vcm-6956.vm.duke.edu
vcm-6655.vm.duke.edu
portal.duke.edu
vcm-4178.vm.duke.edu
www.highseas.env.duke.edu
bradford.lib.duke.edu
abaqus.oit.duke.edu
nunn-lab.evolutionaryanthropology.duke.edu
vcm-7023.vm.duke.edu
vcm-7214.vm.duke.edu
redy.ssri.duke.edu
globaled.duke.edu
vcm-5001.vm.duke.edu
warpwire-frontend-test.oit.duke.edu
vcm-24408.vm.duke.edu
pateklab.biology.duke.edu
cacti-test.oit.duke.edu
vcm-5694.vm.duke.edu
roomview.trinity.duke.edu
fast.dcri.duke.edu
www.gifts.duke.edu
medspace.mc.duke.edu
vcm-6817.vm.duke.edu
forms.hr.duke.edu
enquire.ads.duke.edu
vcm-4824.vm.duke.edu
vcm-4390.vm.duke.edu
conf.events.duke.edu
vcm-5513.vm.duke.edu
calendar.duke.edu
highseas.env.duke.edu
vcm-4296.vm.duke.edu
www1-prod.fuqua.duke.edu
api.oit.duke.edu
www.callrec.oit.duke.edu
igs.duke.edu
vcm-4734.vm.duke.edu
lift.duke.edu
vcm-6534.vm.duke.edu
socialequity.duke.edu
statuspage.io
news-old.sanford.duke.edu
vcm-4573.vm.duke.edu
vcm-6671.vm.duke.edu
eam-app-test-01.oit.duke.edu
statuspage.io
www1-stage.fuqua.duke.edu
stream.fuqua.duke.edu
vlp-orimrh001.dhe.duke.edu
vcm-7069.vm.duke.edu
rapid-936.vm.duke.edu
vcm-5696.vm.duke.edu
stiffrobertslab.pratt.duke.edu
inform4-edc-qc.dcri.duke.edu
vcm-6141.vm.duke.edu
fitz-cups-01.oit.duke.edu
vcm-4779.vm.duke.edu
sakai.duke.edu
trivedi.pratt.duke.edu
inform46-aq52-qc.dcri.duke.edu
statuspage.io
dws-e.oit.duke.edu
statuspage.io
web.visaservices.duke.edu
patty.dnec.duke.edu
www.dukephoto.duke.edu
alsclinic.duke.edu
cluster.technolutions.net
oriapps.duhs.duke.edu
statuspage.io
ccbb.duke.edu
dukecapitalpartners.duke.edu
cpe-bach-multi1.trinity.duke.edu
projects.law.duke.edu
connect.ssri.duke.edu
work.duke.edu
gartner.oit.duke.edu
vcm-6535.vm.duke.edu
go.fuqua.duke.edu
queerhistory.duke.edu
communications.hr.duke.edu
vcm-6503.vm.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-4198.vm.duke.edu
maestro-hsw.duhs.duke.edu
dcid.sanford.duke.edu
web.visaservices.duke.edu
recreation.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
tts-web-01-staging-multi1.trinity.duke.edu
vcm-5257.vm.duke.edu
vcm-5238.vm.duke.edu
vcm-12275.vm.duke.edu
www.fuquaworld.duke.edu
iqaapp.dhvi.duke.edu
yt-cs216.cs.duke.edu
andererseits.library.duke.edu
appledore2.notes.duke.edu
payments.tip.duke.edu
vcm-6956.vm.duke.edu
vcm-6655.vm.duke.edu
portal.duke.edu
vcm-4178.vm.duke.edu
www.highseas.env.duke.edu
bradford.lib.duke.edu
abaqus.oit.duke.edu
nunn-lab.evolutionaryanthropology.duke.edu
vcm-7023.vm.duke.edu
vcm-7214.vm.duke.edu
redy.ssri.duke.edu
globaled.duke.edu
vcm-5001.vm.duke.edu
warpwire-frontend-test.oit.duke.edu
vcm-24408.vm.duke.edu
pateklab.biology.duke.edu
cacti-test.oit.duke.edu
vcm-5694.vm.duke.edu
roomview.trinity.duke.edu
fast.dcri.duke.edu
www.gifts.duke.edu
medspace.mc.duke.edu
vcm-6817.vm.duke.edu
forms.hr.duke.edu
enquire.ads.duke.edu
vcm-4824.vm.duke.edu
vcm-4390.vm.duke.edu
conf.events.duke.edu
vcm-5513.vm.duke.edu
calendar.duke.edu
highseas.env.duke.edu
vcm-4296.vm.duke.edu
www1-prod.fuqua.duke.edu
api.oit.duke.edu
www.callrec.oit.duke.edu
igs.duke.edu
vcm-4734.vm.duke.edu
lift.duke.edu
vcm-6534.vm.duke.edu
socialequity.duke.edu
statuspage.io
news-old.sanford.duke.edu
vcm-4573.vm.duke.edu
vcm-6671.vm.duke.edu
Certificate
The complete raw certificate details for vcm-24408.vm.duke.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHzTCCBrWgAwIBAgIQfaeU87isC1Sk7ezMj9wSUjANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMjAxMTIwMDAwMDBaFw0yMzAxMTIy MzU5NTlaMH8xCzAJBgNVBAYTAlVTMRcwFQYDVQQIEw5Ob3J0aCBDYXJvbGluYTEP MA0GA1UEBxMGRHVyaGFtMRgwFgYDVQQKEw9EdWtlIFVuaXZlcnNpdHkxDDAKBgNV BAsTA09JVDEeMBwGA1UEAxMVdmNtLTI0NDA4LnZtLmR1a2UuZWR1MIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvEH+YJN1Y3TOcAq+NXMsGI0zb1D110AZ yo1wjv1F+TtjzTj3v+RUUixZS8RqNE4qJfDlg/iUyEo1ijrIn+n7OEEPrTa4pGRI xDmXI/bE4glO+xbGVhA4hH9IRK4geu0BFwWriQNvFncLZyRhCVz0vihNPmrOh7nS He2ZRSkQlat5y9L6wQaI9At41gjGN1WFez02npfWAQq/JjLFAiNufwjYKo/ePB4Y kLz8oa2UvA+Ellfb6mfri6uQHwk9dcbQHpsWGYdLvdLnVsK+ttR2RiXBqZDD9/Cy vHsjAEMdYki4tuQN8b9e9UNasGB8aF1u9tkAj+aSa6buyZjkYjfvv0g5+GftmPAG szVQ5OwQTIxO1cXbceNpOKWH9wvswbclMTdIgEq4Flde5CkfPlgDwIEJAnFdef0z oUAtv+NkE8X9ulnKUe7wGZ5RHTfLdas4U5wZH/6ArEbCrxL6+08+XLFEJ95nNiPZ g+YvS5SD474iFvnobIC48KWpfR4p+1yKnD3l9jPhGQLYFrjCr8gtdPUUNjhOXnZk pRnECNKs6RzLR3gI88Ivy0fOSrdfxn+Oepo64w41AiVujHvui74fPrPa5DBXqqhC cQ08rrc/LyltAfaVBRow0xnESRBaA3O4liGpsech8KkkhAMiUkllT82s/GAzQ4UD JQfN42VsVaECAwEAAaOCA0wwggNIMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSG rHEADOc4MB0GA1UdDgQWBBSoM8Vez6AikSmNkiDgfa4tssPpfTAOBgNVHQ8BAf8E BAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwZwYDVR0gBGAwXjBSBgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0 cHM6Ly93d3cuaW5jb21tb24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBk ZjAIBgZngQwBAgIwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1v bi1yc2Eub3JnL0luQ29tbW9uUlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkw ZzA+BggrBgEFBQcwAoYyaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9u UlNBU2VydmVyQ0FfMi5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0 cnVzdC5jb20wIAYDVR0RBBkwF4IVdmNtLTI0NDA4LnZtLmR1a2UuZWR1MIIBfwYK KwYBBAHWeQIEAgSCAW8EggFrAWkAdgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTK hYY069yCigAAAX5MAukvAAAEAwBHMEUCIEjZSdLE6l9SfV3/SVai9e3fpGCp2FmU UCrTzitNSt0cAiEAtbWDpvpFBibM+ja+LgqQpFrwmkwXlUiCc/kIPMgpm2cAdgB6 MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAX5MAujyAAAEAwBHMEUC IDoKlxdj3KWN2+G1NUhszUSnc/vo52rWYD+xAkRIsF+vAiEA6g5NFdlhu/rD3ZQI nCCbw7P9larkyhxDwa42cs31T88AdwDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp 4Xd9bQa9bgAAAX5MAujDAAAEAwBIMEYCIQDRu4FOsKNQ0Ng+l3uuXrthUsZlEFQb egm22SsixSrplAIhAMWbDPh+Cd5q5isETsGDhBQJC5zc8+j1Tv6DI/5ylf3UMA0G CSqGSIb3DQEBCwUAA4IBAQAjRwFphRIaGj/ojcVgR08/GbVCzEyBjybRQ1eJiUZA tin53m8smbeBzAb4eS8GyBnivGxgZJKt9zTlRIUGupboC36esSaCxqVLpkE/Do+6 XhSY+JlgkHXbE1ee0Q67koj7sWGP6785Sqd0Siby6zWBV7dG/j/OcKuWr3KWqtvd POuAB8eeqDgpaSR/vWT/YjvUU6JkXTOjzdPBrqIhGElIL97ZTS2ZiS7f/Eycrhgq KlUpC5VR9gylV/iKfRW/jR/JL/wF4nnEG/mBNHvO/YkyhNbrw/pe4xooM/7NspNx ho1oMIRyESseDHTSVczlH+Diy2MsaMkGwq/3EPu4gtjj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvEH+YJN1Y3TOcAq+NXMs GI0zb1D110AZyo1wjv1F+TtjzTj3v+RUUixZS8RqNE4qJfDlg/iUyEo1ijrIn+n7 OEEPrTa4pGRIxDmXI/bE4glO+xbGVhA4hH9IRK4geu0BFwWriQNvFncLZyRhCVz0 vihNPmrOh7nSHe2ZRSkQlat5y9L6wQaI9At41gjGN1WFez02npfWAQq/JjLFAiNu fwjYKo/ePB4YkLz8oa2UvA+Ellfb6mfri6uQHwk9dcbQHpsWGYdLvdLnVsK+ttR2 RiXBqZDD9/CyvHsjAEMdYki4tuQN8b9e9UNasGB8aF1u9tkAj+aSa6buyZjkYjfv v0g5+GftmPAGszVQ5OwQTIxO1cXbceNpOKWH9wvswbclMTdIgEq4Flde5CkfPlgD wIEJAnFdef0zoUAtv+NkE8X9ulnKUe7wGZ5RHTfLdas4U5wZH/6ArEbCrxL6+08+ XLFEJ95nNiPZg+YvS5SD474iFvnobIC48KWpfR4p+1yKnD3l9jPhGQLYFrjCr8gt dPUUNjhOXnZkpRnECNKs6RzLR3gI88Ivy0fOSrdfxn+Oepo64w41AiVujHvui74f PrPa5DBXqqhCcQ08rrc/LyltAfaVBRow0xnESRBaA3O4liGpsech8KkkhAMiUkll T82s/GAzQ4UDJQfN42VsVaECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 167023634154707862295940692822533608018 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'North Carolina' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Durham' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Duke University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vcm-24408.vm.duke.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 768024767007190234279554452718422514232720240222053881520986975752791625078552977319750239157917245401815758075834145491366094865405377481301214633636725602380616562785768076231419338661293110778575091190698349185880613455890800479547070293801409705049201023844549623731339043583841884092383358795535982141214354256948354359442615958520577343186861603401712642909505626917177320583856605392518049106032815785551260261383538796138408666263627171739516514970563219484296935285902681024291715139902168632452969650910621879117808115492480572921862785039350063385285219082363097441131989102446821044078398036249161706019792984354245249417365663355732235032813551711130743426942804726788781285250311398065295114306155584554036594810270243775882912765514677406804652990408836854717295318730109881962313431597830754762689746009048142050052455762341763496179753186815863415883699098697580414012265725164004946443245877802502543912590840378642321399437606488514101505086471385879328563901491977792254697295526695776592246023370866264439905331024229429736846069623612691890105514512803283573126735569453868186326568084942426277494086298909227390381917050199771418500476303937707571170085527474938883405031678081287939640039012328825657198663073 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a833c55ecfa02291298d9220e07dae2db2c3e97d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vcm-24408.vm.duke.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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