shibboleth.nyu.edu
- New York University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 73:3c:71:e3:3e:04:54:40:d8:6f:69:e3:c5:08:f7:5c was issued on by Internet2.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
New York University
Organization:
New York University
Organization unit: ITS eServices
Organization unit: ITS eServices
Address:
70 Washington Square South
Postal code: 10012
State / Province: New York
Locality: New York
Country: US
Postal code: 10012
State / Province: New York
Locality: New York
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 73:3c:71:e3:3e:04:54:40:d8:6f:69:e3:c5:08:f7:5cSerial Number (int): 153175067243048822605586016492700890972
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 12:d7:7d:dc:48:63:3f:17:b9:df:60:23:e2:98:a1:05:e1:07:bf:c2
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): d8:80:05:44:c6:0d:56:40:3e:9f:1f:3e:9f:83:03:a9:09:90:ba:9d
Fingerprint (sha256): 01:1d:55:7a:e4:ee:2a:2f:c8:78:8f:c3:ae:93:6b:f6:71:27:2b:dd:c7:00:f0:07:b8:3f:19:30:70:17:30:3d
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate shibboleth.nyu.edu
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shibboleth.nyu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shibboleth.nyu.edu
login.nyu.edu
shibboleth.gslb.nyu.edu
shibboleth.home.nyu.edu
shibboleth.home.syr.nyu.edu
login.nyu.edu
shibboleth.gslb.nyu.edu
shibboleth.home.nyu.edu
shibboleth.home.syr.nyu.edu
Other certificates including the domain name nyu.edu
(limited to 100 certificates)
nyush-nac1.shanghai.nyu.edu
hosting.nyu.edu
rits.hosting.nyu.edu
rebekahrust.hosting.nyu.edu
ssoprod.its.nyu.edu
zora.hosting.nyu.edu
giki.hosting.nyu.edu
diploma.sps.nyu.edu
5648867420798976-fe4.pantheonsite.io
fastmri.med.nyu.edu
fcl.law.nyu.edu
mobileprint.nyu.edu
admissions.emeritus.org
cluster3.technolutions.net
pdsdev.library.nyu.edu
5676582576324608-fe3.pantheonsite.io
cluster3.technolutions.net
applicant.stern.nyu.edu
katejustement.hosting.nyu.edu
heng.hosting.nyu.edu
drkjlancaster.hosting.nyu.edu
klaporta.hosting.nyu.edu
sueannlau.hosting.nyu.edu
recreationregistration.nyu.edu
dcone.hosting.nyu.edu
makerspace.engineering.nyu.edu
shanghai.hosting.nyu.edu
cairoash.hosting.nyu.edu
laurafranklin-hall.hosting.nyu.edu
ssl714081.cloudflaressl.com
tolga.hosting.nyu.edu
greenestuff.hosting.nyu.edu
tisch.nyu.edu
cb.engineering.nyu.edu
5629935204958208-fe2.pantheonsite.io
newborn.hosting.nyu.edu
dslinks.hosting.nyu.edu
holostor.hpc.nyu.edu
cas02pmvwi.shc.sa.nyu.edu
bennyboy.hosting.nyu.edu
drr.cfs.nyu.edu
j3.shared.global.fastly.net
affiliate-snd.albert.its.nyu.edu
webinar.online.engineering.nyu.edu
nyush.hosting.nyu.edu
marl.smusic.nyu.edu
isdm.nyu.edu
sliu.hosting.nyu.edu
shibboleth.nyu.edu
kimmelonestop.nyu.edu
underrights.hosting.nyu.edu
cybersymposium.engineering.nyu.edu
vgc.poly.edu
debrajlevine.hosting.nyu.edu
banking-business-review.com
cga.hosting.nyu.edu
keywords.nyupress.org
sl5298.hosting.nyu.edu
christinexu.hosting.nyu.edu
rh.abudhabi.nyu.edu
shanghai.hosting.nyu.edu
home.nyu.edu
tmsdc02.shc.sa.nyu.edu
osiris.cyber.nyu.edu
jose.hosting.nyu.edu
katejustement.hosting.nyu.edu
violetnetwork.nyu.edu
koh.hosting.nyu.edu
whyb.hosting.nyu.edu
balletcenter.nyu.edu
eatingglobally.heatherruthlee.hosting.nyu.edu
vh-b7-te.law.nyu.edu
spanua3.hosting.nyu.edu
cluster3.technolutions.net
shanghai.hosting.nyu.edu
englishchannel.hosting.nyu.edu
textbooks.shanghai.nyu.edu
engage.its.nyu.edu
cga.hosting.nyu.edu
ais-web.stern.nyu.edu
*.stern.nyu.edu
wormtails.bio.nyu.edu
banking-business-review.com
seungguini.hosting.nyu.edu
laraybabrar.hosting.nyu.edu
learn.gencore.bio.nyu.edu
cluster2.technolutions.net
alicezhao.com
sofie.stern.nyu.edu
isdm.nyu.edu
fasedtech.hosting.nyu.edu
alyazia.hosting.nyu.edu
vgc.poly.edu
5629935204958208-fe2.pantheonsite.io
hockygroup.hosting.nyu.edu
drkjlancaster.hosting.nyu.edu
nyuresearchsites.org
5676582576324608-fe3.pantheonsite.io
fame.nyu.edu
guantanamo.dlib.nyu.edu
hosting.nyu.edu
rits.hosting.nyu.edu
rebekahrust.hosting.nyu.edu
ssoprod.its.nyu.edu
zora.hosting.nyu.edu
giki.hosting.nyu.edu
diploma.sps.nyu.edu
5648867420798976-fe4.pantheonsite.io
fastmri.med.nyu.edu
fcl.law.nyu.edu
mobileprint.nyu.edu
admissions.emeritus.org
cluster3.technolutions.net
pdsdev.library.nyu.edu
5676582576324608-fe3.pantheonsite.io
cluster3.technolutions.net
applicant.stern.nyu.edu
katejustement.hosting.nyu.edu
heng.hosting.nyu.edu
drkjlancaster.hosting.nyu.edu
klaporta.hosting.nyu.edu
sueannlau.hosting.nyu.edu
recreationregistration.nyu.edu
dcone.hosting.nyu.edu
makerspace.engineering.nyu.edu
shanghai.hosting.nyu.edu
cairoash.hosting.nyu.edu
laurafranklin-hall.hosting.nyu.edu
ssl714081.cloudflaressl.com
tolga.hosting.nyu.edu
greenestuff.hosting.nyu.edu
tisch.nyu.edu
cb.engineering.nyu.edu
5629935204958208-fe2.pantheonsite.io
newborn.hosting.nyu.edu
dslinks.hosting.nyu.edu
holostor.hpc.nyu.edu
cas02pmvwi.shc.sa.nyu.edu
bennyboy.hosting.nyu.edu
drr.cfs.nyu.edu
j3.shared.global.fastly.net
affiliate-snd.albert.its.nyu.edu
webinar.online.engineering.nyu.edu
nyush.hosting.nyu.edu
marl.smusic.nyu.edu
isdm.nyu.edu
sliu.hosting.nyu.edu
shibboleth.nyu.edu
kimmelonestop.nyu.edu
underrights.hosting.nyu.edu
cybersymposium.engineering.nyu.edu
vgc.poly.edu
debrajlevine.hosting.nyu.edu
banking-business-review.com
cga.hosting.nyu.edu
keywords.nyupress.org
sl5298.hosting.nyu.edu
christinexu.hosting.nyu.edu
rh.abudhabi.nyu.edu
shanghai.hosting.nyu.edu
home.nyu.edu
tmsdc02.shc.sa.nyu.edu
osiris.cyber.nyu.edu
jose.hosting.nyu.edu
katejustement.hosting.nyu.edu
violetnetwork.nyu.edu
koh.hosting.nyu.edu
whyb.hosting.nyu.edu
balletcenter.nyu.edu
eatingglobally.heatherruthlee.hosting.nyu.edu
vh-b7-te.law.nyu.edu
spanua3.hosting.nyu.edu
cluster3.technolutions.net
shanghai.hosting.nyu.edu
englishchannel.hosting.nyu.edu
textbooks.shanghai.nyu.edu
engage.its.nyu.edu
cga.hosting.nyu.edu
ais-web.stern.nyu.edu
*.stern.nyu.edu
wormtails.bio.nyu.edu
banking-business-review.com
seungguini.hosting.nyu.edu
laraybabrar.hosting.nyu.edu
learn.gencore.bio.nyu.edu
cluster2.technolutions.net
alicezhao.com
sofie.stern.nyu.edu
isdm.nyu.edu
fasedtech.hosting.nyu.edu
alyazia.hosting.nyu.edu
vgc.poly.edu
5629935204958208-fe2.pantheonsite.io
hockygroup.hosting.nyu.edu
drkjlancaster.hosting.nyu.edu
nyuresearchsites.org
5676582576324608-fe3.pantheonsite.io
fame.nyu.edu
guantanamo.dlib.nyu.edu
Certificate
The complete raw certificate details for shibboleth.nyu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG6jCCBdKgAwIBAgIQczxx4z4EVEDYb2njxQj3XDANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMTAyMjYwMDAwMDBaFw0yMjAyMjYy MzU5NTlaMIG7MQswCQYDVQQGEwJVUzEOMAwGA1UEERMFMTAwMTIxETAPBgNVBAgT CE5ldyBZb3JrMREwDwYDVQQHEwhOZXcgWW9yazEjMCEGA1UECRMaNzAgV2FzaGlu Z3RvbiBTcXVhcmUgU291dGgxHDAaBgNVBAoTE05ldyBZb3JrIFVuaXZlcnNpdHkx FjAUBgNVBAsTDUlUUyBlU2VydmljZXMxGzAZBgNVBAMTEnNoaWJib2xldGgubnl1 LmVkdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALC8ts39A7lUmynw YzbGfY+ntdcyweLnj7fhXrJfej7dBZjEI9dggkPIeIKfk5YygyzucQVQszC02Qdb nk4ERdEHZ20UY+YWNAWW1VyRExXKMdGAVxka2xlPQJHLaux5B4dk1ZSZG27OI9h0 gCPwoDxu9Yi0wZyJLynEz4AicYAb42UNNp+r2L4PTwnfoRkOUzYHb0JvlxjNnrGP gGZtftzFOlz1x7eyoK6H6ByxH3ej/XXliBEz3d6cJtSEgsSK1hxRU2pJQAh1ZazC zhzLlEUjCDR1YPKfb0GemNlKDWGTN4lUhIth4GShgqU7LK4lvdSKJa5s/jwz0rwk 7S1pPY8CAwEAAaOCAywwggMoMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEA DOc4MB0GA1UdDgQWBBQS133cSGM/F7nfYCPimKEF4Qe/wjAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw ZwYDVR0gBGAwXjBSBgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6 Ly93d3cuaW5jb21tb24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAI BgZngQwBAgIwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1y c2Eub3JnL0luQ29tbW9uUlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+ BggrBgEFBQcwAoYyaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNB U2VydmVyQ0FfMi5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVz dC5jb20wggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBGpVXrdfqRIDC1oolp9PN9 ESxBdL79SbiFq/L8cP5tRwAAAXfe49CKAAAEAwBHMEUCIHw7EWZ+Z5dcwb5dkV6P dl83bL6in3TTNVv75ry30HndAiEAiujlVUw/XgQqkvdegfbFHvvigsvsf3uz1nao NeInlzkAdgDfpV6raIJPH2yt7rhfTj5a6s2iEqRqXo47EsAgRFwqcwAAAXfe49Cy AAAEAwBHMEUCIQC3TPzNCenYUhoygRKatXk9ySdik2jXSj6CtzVuTC1ExAIgQJOM yJuc+yv1ELarJlEflWPgcHRdvxXpQSo/VQqXK6owewYDVR0RBHQwcoISc2hpYmJv bGV0aC5ueXUuZWR1gg1sb2dpbi5ueXUuZWR1ghdzaGliYm9sZXRoLmdzbGIubnl1 LmVkdYIXc2hpYmJvbGV0aC5ob21lLm55dS5lZHWCG3NoaWJib2xldGguaG9tZS5z eXIubnl1LmVkdTANBgkqhkiG9w0BAQsFAAOCAQEAXLDSExAfANTf5Og0PF+6UqMJ DsfFw4p16VMFmn1X7d4RtQZMvPgcUoTXDTeEw7SMrXeHgHsC6KeD94T0CuLk3484 gOoM+FVJ+ynpCMy8jE1pLwaVqvZjT8UIiBUqtbqNpHd/9jTL4we74vdlknjWhFOB G4XDv98ohP5t5uhPcvJdl4YWA1Tquqaz9cQOYYflvBCjH5CyjJf2qT2o9xPC4Rsq 9O/6i6f7z1racU97LajYRGhXnpy6y5v9ArwhRzjxhY7K/YA3OpXF6f7E2Vxc7Moa PnZEnnHjAHPx2ucXLfhm+lHHAqMPA4RjMHp7pK/BzQTFGlcw8lpKUerfm3xNpw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLy2zf0DuVSbKfBjNsZ9 j6e11zLB4uePt+Fesl96Pt0FmMQj12CCQ8h4gp+TljKDLO5xBVCzMLTZB1ueTgRF 0QdnbRRj5hY0BZbVXJETFcox0YBXGRrbGU9Akctq7HkHh2TVlJkbbs4j2HSAI/Cg PG71iLTBnIkvKcTPgCJxgBvjZQ02n6vYvg9PCd+hGQ5TNgdvQm+XGM2esY+AZm1+ 3MU6XPXHt7KgrofoHLEfd6P9deWIETPd3pwm1ISCxIrWHFFTaklACHVlrMLOHMuU RSMINHVg8p9vQZ6Y2UoNYZM3iVSEi2HgZKGCpTssriW91Iolrmz+PDPSvCTtLWk9 jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 153175067243048822605586016492700890972 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '10012' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '70 Washington Square South' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ITS eServices' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shibboleth.nyu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22311000055519628201075347008094441522741303001421443832916313750409823160455117581290397602162385624110982832437413099693164775794403947736928682669255965236436032573552784291464561234705500606023731022025274826288298677516725219768632152216535925967444327910075810738138053242145595786517823166797691265877162233843874304281833111875084022848302749209557746137754587180523696333071928931444955929870583547878880041375848779544345998174614423080025917080575078726912227003405454110445435718450730376431084883877221695036639584838433568486325385540777142806567986381557166277951845383518353609362074055125830405275023 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 12d77ddc48633f17b9df6023e298a105e107bfc2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d4700000177dee3d08a000004030047304502207c3b11667e67975cc1be5d915e8f765f376cbea29f74d3355bfbe6bcb7d079dd0221008ae8e5554c3f5e042a92f75e81f6c51efbe282cbec7f7bb3d676a835e2279739007600dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a7300000177dee3d0b20000040300473045022100b74cfccd09e9d8521a3281129ab5793dc927629368d74a3e82b7356e4c2d44c4022040938cc89b9cfb2bf510b6ab26511f9563e070745dbf15e9412a3f550a972baa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibboleth.nyu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.nyu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibboleth.gslb.nyu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibboleth.home.nyu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibboleth.home.syr.nyu.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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