grp-app-prod.sil.arl.psu.edu
- The Pennsylvania State University -
Issued by InCommon RSA Server CA 2
About this certificate
This digital certificate with serial number 80:ca:ee:48:28:79:3a:70:d0:9b:f2:3f:b3:a1:c8:6b was issued on by Internet2.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
The Pennsylvania State University
Organization:
The Pennsylvania State University
State / Province:
Pennsylvania
Country: US
Country: US
Internet2
Organization:
Internet2
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 80:ca:ee:48:28:79:3a:70:d0:9b:f2:3f:b3:a1:c8:6bSerial Number (int): 171194860356332593432594060266069674091
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 78:d8:db:91:69:e2:cc:b6:32:f6:97:67:0b:0f:d1:6f:de:86:39:45
AuthorityKeyId: ef:4c:00:92:a6:fb:76:2e:5e:95:e2:c9:5f:87:1b:19:d5:4d:e2:d9
Fingerprint (sha1): 0e:2f:a3:14:a5:70:62:55:f5:1b:e4:63:0a:a8:9d:12:b1:0c:a6:48
Fingerprint (sha256): 01:0e:09:12:c8:db:77:7e:86:e9:3a:fe:09:79:8d:13:80:55:d7:4e:a7:ac:8e:88:51:96:54:36:e8:f5:2a:86
Issuing Certificate URL: http://crt.sectigo.com/InCommonRSAServerCA2.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/InCommonRSAServerCA2.crl
Check the revocation status for certificate grp-app-prod.sil.arl.psu.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for grp-app-prod.sil.arl.psu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
grp-app-prod.sil.arl.psu.edu
Other certificates including the domain name psu.edu
(limited to 100 certificates)
cds4.cvent.com
pennstatehealthnews.org
nemesis.vmhost.psu.edu
apply.psu.edu
d5-gogreenfront.ddar.psu.edu
vpfa.psu.edu
5693703389708288-fe3.pantheonsite.io
crmcn-prd-db.windom.outreach.psu.edu
apps.opp.psu.edu
prod-web10.lionpath.psu.edu
software.psu.edu
idashboard.hbg.psu.edu
svrp.psu.edu
www.causeweb.org
harrelllibcal.library.psu.edu
carpepm.almonds.com
ldap10.iam.psu.edu
webfiles.psu.edu
harrell.library.psu.edu
fandb.psu.edu
coaction.psu.edu
us.prod.campusgroups.com
qaauth.libraries.psu.edu
online.ist.psu.edu
morph-331.vmhost.psu.edu
angelshibaccept.ais.psu.edu
schoolresources.militaryfamilies.psu.edu
hrservdc.ohrrider.psu.edu
ssc1.wpsu.psu.edu
watchdog.vmhost.psu.edu
wsus.sysman.it.psu.edu
www.inclusivity.psu.edu
mkt-prod-db.windom.outreach.psu.edu
scholarsphere-qa.dlt.psu.edu
secure.smeal.psu.edu
collegian.psu.edu
www.ems.psu.edu
www.solutions2wxrisk.psu.edu
ucdc.edu
methodology.psu.edu
us.prod.campusgroups.com
ezaccess.libraries.psu.edu
usegalaxy.org
apps.tlt.psu.edu
alumni.libraries.psu.edu
exchange.ag.psu.edu
nartc.fcm.arizona.edu
egsc.psu.edu
calendar.sdzsafaripark.org
grafana.ais.psu.edu
artedu.vmhost.psu.edu
com-ce.vmhost.psu.edu
www.engr.psu.edu
webdev.research.psu.edu
mrsec.psu.edu
isserv83.psuas.psu.edu
anth.la.psu.edu
nrotc.psu.edu
www.bookrequest.psu.edu
grp-app-prod.sil.arl.psu.edu
ocaltest.aset.psu.edu
courses.schoolresources.militaryfamilies.psu.edu
5693703389708288-fe3.pantheonsite.io
openid.et-test.psu.edu
f1adp-smartpark.ad.psu.edu
current.it.psu.edu
cas-cp-01.ag.psu.edu
inclusivity.psu.edu
vivid.cse.psu.edu
morgancenter.psu.edu
www.vmhost.psu.edu
www.studentloans.psu.edu
cds4.cvent.com
math.science.psu.edu
uconnectlabs.com
newkensington.psu.edu
chat.pshs.psu.edu
cpy-web1.lionpath.psu.edu
campusmap.psu.edu
www.opia.psu.edu
science.aws.science.psu.edu
genuinerisk.bmb.psu.edu
delta.csec-cra.psu.edu
cdn-test.battlefields.org
psualert-test.iam.psu.edu
e8-pnc-sep.ad.psu.edu
staging.aws.science.psu.edu
test.eis.uw.edu
dev.e-education.psu.edu
admissions.med.psu.edu
etda-explore-prod.libraries.psu.edu
secure.wpsu.psu.edu
www2.ems.psu.edu
admin.hhdev.psu.edu
citeak.multidevcom.uaf.edu
newton.vmhost.psu.edu
5693703389708288-fe3.pantheonsite.io
www.design-engineering.princeton.edu
latinocaucus.psu.edu
jupyterhub.ist.psu.edu
pennstatehealthnews.org
nemesis.vmhost.psu.edu
apply.psu.edu
d5-gogreenfront.ddar.psu.edu
vpfa.psu.edu
5693703389708288-fe3.pantheonsite.io
crmcn-prd-db.windom.outreach.psu.edu
apps.opp.psu.edu
prod-web10.lionpath.psu.edu
software.psu.edu
idashboard.hbg.psu.edu
svrp.psu.edu
www.causeweb.org
harrelllibcal.library.psu.edu
carpepm.almonds.com
ldap10.iam.psu.edu
webfiles.psu.edu
harrell.library.psu.edu
fandb.psu.edu
coaction.psu.edu
us.prod.campusgroups.com
qaauth.libraries.psu.edu
online.ist.psu.edu
morph-331.vmhost.psu.edu
angelshibaccept.ais.psu.edu
schoolresources.militaryfamilies.psu.edu
hrservdc.ohrrider.psu.edu
ssc1.wpsu.psu.edu
watchdog.vmhost.psu.edu
wsus.sysman.it.psu.edu
www.inclusivity.psu.edu
mkt-prod-db.windom.outreach.psu.edu
scholarsphere-qa.dlt.psu.edu
secure.smeal.psu.edu
collegian.psu.edu
www.ems.psu.edu
www.solutions2wxrisk.psu.edu
ucdc.edu
methodology.psu.edu
us.prod.campusgroups.com
ezaccess.libraries.psu.edu
usegalaxy.org
apps.tlt.psu.edu
alumni.libraries.psu.edu
exchange.ag.psu.edu
nartc.fcm.arizona.edu
egsc.psu.edu
calendar.sdzsafaripark.org
grafana.ais.psu.edu
artedu.vmhost.psu.edu
com-ce.vmhost.psu.edu
www.engr.psu.edu
webdev.research.psu.edu
mrsec.psu.edu
isserv83.psuas.psu.edu
anth.la.psu.edu
nrotc.psu.edu
www.bookrequest.psu.edu
grp-app-prod.sil.arl.psu.edu
ocaltest.aset.psu.edu
courses.schoolresources.militaryfamilies.psu.edu
5693703389708288-fe3.pantheonsite.io
openid.et-test.psu.edu
f1adp-smartpark.ad.psu.edu
current.it.psu.edu
cas-cp-01.ag.psu.edu
inclusivity.psu.edu
vivid.cse.psu.edu
morgancenter.psu.edu
www.vmhost.psu.edu
www.studentloans.psu.edu
cds4.cvent.com
math.science.psu.edu
uconnectlabs.com
newkensington.psu.edu
chat.pshs.psu.edu
cpy-web1.lionpath.psu.edu
campusmap.psu.edu
www.opia.psu.edu
science.aws.science.psu.edu
genuinerisk.bmb.psu.edu
delta.csec-cra.psu.edu
cdn-test.battlefields.org
psualert-test.iam.psu.edu
e8-pnc-sep.ad.psu.edu
staging.aws.science.psu.edu
test.eis.uw.edu
dev.e-education.psu.edu
admissions.med.psu.edu
etda-explore-prod.libraries.psu.edu
secure.wpsu.psu.edu
www2.ems.psu.edu
admin.hhdev.psu.edu
citeak.multidevcom.uaf.edu
newton.vmhost.psu.edu
5693703389708288-fe3.pantheonsite.io
www.design-engineering.princeton.edu
latinocaucus.psu.edu
jupyterhub.ist.psu.edu
Certificate
The complete raw certificate details for grp-app-prod.sil.arl.psu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhjCCA+6gAwIBAgIRAIDK7kgoeTpw0JvyP7OhyGswDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCVVMxEjAQBgNVBAoTCUludGVybmV0MjEhMB8GA1UEAxMYSW5D b21tb24gUlNBIFNlcnZlciBDQSAyMB4XDTI0MDYxMDAwMDAwMFoXDTI1MDcxMTIz NTk1OVowdzELMAkGA1UEBhMCVVMxFTATBgNVBAgTDFBlbm5zeWx2YW5pYTEqMCgG A1UEChMhVGhlIFBlbm5zeWx2YW5pYSBTdGF0ZSBVbml2ZXJzaXR5MSUwIwYDVQQD ExxncnAtYXBwLXByb2Quc2lsLmFybC5wc3UuZWR1MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAgNPkaT6PpMnTq88HsMAnD8SlG5x7oYdSHoz1rg5uaEev OYRYU/vbS30CRFMGV5Mu6leSrjyb/cq9xO/f5qlLM2JyLhhkNFfvO0ch7f8d3jyz /9/P4JzCCQgmXGLTqEEh4vnutNG3IP851LV/oj3V1KgFRC8I3b/C31aJjOq/Z8X8 cou2TS7VPhzCVYfxJJ3tCIiSnN9RWBCnuPzHvIFFXwG4ir9hFfwnfg2VOISGZLi2 o+zqkRGCZGYsWEXWN7V55fPah2XYQqlCjcA0n8+HXOWbkB6eUUIB5MgXSo0TiNxH oz6tkcfjhOIbuphGnUVn7Ag3b3KmRqHJuqmDyDPBJwIDAQABo4IBvjCCAbowHwYD VR0jBBgwFoAU70wAkqb7di5eleLJX4cbGdVN4tkwHQYDVR0OBBYEFHjY25Fp4sy2 MvaXZwsP0W/ehjlFMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEB AgJnMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeB DAECAjBABgNVHR8EOTA3MDWgM6Axhi9odHRwOi8vY3JsLnNlY3RpZ28uY29tL0lu Q29tbW9uUlNBU2VydmVyQ0EyLmNybDBwBggrBgEFBQcBAQRkMGIwOwYIKwYBBQUH MAKGL2h0dHA6Ly9jcnQuc2VjdGlnby5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQTIu Y3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTATBgorBgEE AdZ5AgQDAQH/BAIFADAnBgNVHREEIDAeghxncnAtYXBwLXByb2Quc2lsLmFybC5w c3UuZWR1MA0GCSqGSIb3DQEBDAUAA4IBgQCBVmLCBsrvXI6xqUAvWklXO6ZV5PbZ hpQLDs/M17eOrkLG2KwgKkVxCX5c/U9pANsxXtcYP5o6LhTRRoCksY+0HKEO8wjt aYSsud8jIqY9DnoCR+PtHH4vRsmi90e1guyq0k1bCeyRU33+5lSMkfStJQf05LQZ YCmPqTqWx6MLK0wpJr0vMT4R3zZgCkl/UskJVAYheBzWESeCfaH/qI6J5W35geBj 3sAiWdd9CqiAi16ibyQbq8P1v+RTGnAGuvLF8+jyGmalyuRAlXrh8T/dJTBYbcDl GamzdJpQvfrjl7QrJKVdsE7pT1SZScYeZ4CQyQVKe3Kcc2Cke6tsJts/0wJGDPYj GpBzjkcQlDIv+864uKre4VcLO6/PqCrn8rkVnmxDHkNLVXylXPiHpx1u0k6U+oR2 jCJsZEV2ZUmA892RdY1B3TIZVYXZfMKuLe7JfhLgB3HSYE6XrjikSm0aKy/tf4Vv QbpTG5EcOxxWx2J+gNTr/ovsCywIxF4oHjE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgNPkaT6PpMnTq88HsMAn D8SlG5x7oYdSHoz1rg5uaEevOYRYU/vbS30CRFMGV5Mu6leSrjyb/cq9xO/f5qlL M2JyLhhkNFfvO0ch7f8d3jyz/9/P4JzCCQgmXGLTqEEh4vnutNG3IP851LV/oj3V 1KgFRC8I3b/C31aJjOq/Z8X8cou2TS7VPhzCVYfxJJ3tCIiSnN9RWBCnuPzHvIFF XwG4ir9hFfwnfg2VOISGZLi2o+zqkRGCZGYsWEXWN7V55fPah2XYQqlCjcA0n8+H XOWbkB6eUUIB5MgXSo0TiNxHoz6tkcfjhOIbuphGnUVn7Ag3b3KmRqHJuqmDyDPB JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 171194860356332593432594060266069674091 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Pennsylvania State University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'grp-app-prod.sil.arl.psu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16262990989032526869019514633458316328708336944029460301970848159075649876611008104452056754261472153444507252710475828623114319184711985434981668574209392798617693289431082052812183892300415587685972140214403183780506190914809252427544778381867956515090907564976266459370073287004580877893704345186354973132124115379599019157182243427000763511391508034715401054346016920056163469834885253980234267930658378766669058213013038691531673836504064796970280364971053536162581913284753243402802646917511274799072061164497388685563899805058281599023701688409986725281886026360205264248484261867824034697583008764497361092903 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ef4c0092a6fb762e5e95e2c95f871b19d54de2d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 78d8db9169e2ccb632f697670b0fd16fde863945 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.103 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/InCommonRSAServerCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/InCommonRSAServerCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grp-app-prod.sil.arl.psu.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (3072 bits) 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