apps.cndls.georgetown.edu

- Georgetown University -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 77:31:50:3a:3b:90:a0:c2:1d:c2:83:75:f1:01:01:fb was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Georgetown University

Organization: Georgetown University
Organization unit: UISO
Address: 37th and O Streets
Postal code: 20057
State / Province: DC
Locality: Washington
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 77:31:50:3a:3b:90:a0:c2:1d:c2:83:75:f1:01:01:fb
Serial Number (int): 158434181250909373447250426713111331323
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 50:9b:81:d6:91:a5:08:82:60:68:ab:66:6a:25:0c:1f:7f:eb:f4:3c
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): e7:cf:72:00:4a:58:25:9e:92:4c:1f:e9:c3:5b:cb:e7:8c:08:ae:79
Fingerprint (sha256): 01:26:f4:4a:ba:45:73:80:de:43:91:54:7e:4f:88:93:92:9c:50:99:90:93:ad:bf:71:f0:14:43:78:9a:f8:ba

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate apps.cndls.georgetown.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for apps.cndls.georgetown.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

apps.cndls.georgetown.edu

Other certificates including the domain name georgetown.edu

(limited to 100 certificates)
5732312192909312-fe3.pantheonsite.io
test-web-lws.edu.help
tls.automattic.com
5685265389584384-fe2.pantheonsite.io
aap.georgetown.edu
chinaforum.georgetown.edu
5739407210446848-fe1.pantheonsite.io
workflow-qa.uis.georgetown.edu
5665797913444352-fe1.pantheonsite.io
5739407210446848-fe1.pantheonsite.io
bouman.chem.georgetown.edu
5709588863123456-fe4.pantheonsite.io
explore.grad.georgetown.edu
mbawelcome.georgetown.edu
georgetown.edu
5665797913444352-fe1.pantheonsite.io
5721718521856000-fe2.pantheonsite.io
5748809699164160-fe2.pantheonsite.io
nartc.fcm.arizona.edu
calendar.sdzsafaripark.org
georgetown.edu
3fadmin.govdelivery.com
rooms.ll.georgetown.edu
5685265389584384-fe2.pantheonsite.io
www.nfo.georgetown.edu
5719378301550592-fe3.pantheonsite.io
guwli.georgetown.edu
bcc1.talentera.com
apps.cndls.georgetown.edu
futures.georgetown.edu
virtualwellness.care
5745251142598656-fe3.pantheonsite.io
gspscholarshipprogram.com
5739407210446848-fe1.pantheonsite.io
cew.georgetown.edu
5639026912526336-fe4.pantheonsite.io
globalrealestate.georgetown.edu
it.aramex.support
5639026912526336-fe4.pantheonsite.io
bakercenter.georgetown.edu
5721718521856000-fe2.pantheonsite.io
5739407210446848-fe1.pantheonsite.io
slaveryarchive.georgetown.edu
blogs.commons.georgetown.edu
5739407210446848-fe1.pantheonsite.io
maincampusresearch.georgetown.edu
family.georgetown.edu
redcap-proddb.uis.georgetown.edu
5639026912526336-fe4.pantheonsite.io
5680423082393600-fe4.pantheonsite.io
apps.cndls.georgetown.edu
cluster2.technolutions.net
cs-dept.uis.georgetown.edu
navigatorguide.georgetown.edu
sivan-leviyang.facultysite.georgetown.edu
slavery.georgetown.edu
5721718521856000-fe2.pantheonsite.io
cord.sfsq.georgetown.edu
guvpn.georgetown.edu
nccc.georgetown.edu
5665797913444352-fe1.pantheonsite.io
cara.georgetown.edu
cph.georgetown.edu
5719378301550592-fe3.pantheonsite.io
uis.georgetown.edu
5633418423435264-fe1.pantheonsite.io
5732312192909312-fe3.pantheonsite.io
ccsg-prod.uis.georgetown.edu
5651124426113024-fe1.pantheonsite.io
5708313257836544-fe3.pantheonsite.io
5739407210446848-fe1.pantheonsite.io
casestudies.isd.georgetown.edu
thankyourdonor.georgetown.edu
futures.georgetown.edu
ethicslab.georgetown.edu
cluster.technolutions.net
5745189578604544-fe1.pantheonsite.io
5680423082393600-fe4.pantheonsite.io
navigatorguide.georgetown.edu
cph.georgetown.edu
eric.ora.georgetown.edu
directory.georgetown.edu
grad.georgetown.edu
rooms.library.georgetown.edu
5713274213498880-fe4.pantheonsite.io
cluster.technolutions.net
illiad.library.georgetown.edu
5665797913444352-fe1.pantheonsite.io
5685265389584384-fe2.pantheonsite.io
cluster.technolutions.net
campus.georgetown.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
5748809699164160-fe2.pantheonsite.io
web.offcampuspartners.com
casestudies.isd.georgetown.edu
wiki.uis.georgetown.edu
5633418423435264-fe1.pantheonsite.io
offcampushousing.fau.edu
ucedd.georgetown.edu

Certificate

The complete raw certificate details for apps.cndls.georgetown.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIQdzFQOjuQoMIdwoN18QEB+zANBgkqhkiG9w0BAQsFADB2
MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES
MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW
SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0xNzEwMTcwMDAwMDBaFw0yMDExMTAy
MzU5NTlaMIGvMQswCQYDVQQGEwJVUzEOMAwGA1UEERMFMjAwNTcxCzAJBgNVBAgT
AkRDMRMwEQYDVQQHEwpXYXNoaW5ndG9uMRswGQYDVQQJExIzN3RoIGFuZCBPIFN0
cmVldHMxHjAcBgNVBAoTFUdlb3JnZXRvd24gVW5pdmVyc2l0eTENMAsGA1UECxME
VUlTTzEiMCAGA1UEAxMZYXBwcy5jbmRscy5nZW9yZ2V0b3duLmVkdTCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAL9Hem1Z5NyKRnOZNi3gNXCeKjevI+29
XgNJRpsT5zXvVlI12QkfMOhOT59SOe2kVb8NSKpiqElqpNXEBdZvt57HKhVum8km
4PDuG5BIK+a6peSW9Y5A/RlBvqjy06AdpXUVIeOJxiPvYk9RLDqxpOtouARn/5ck
w3poAOPG7ns9/AlqAi+5nuKPR6jJOxuquPpBaKYID4enRGqlRqWp0a5Kz49thbA/
P1o+GtRSYensVHFWxN/PAaS0PYSBYWLugRI6Qnfsi5d3OWJuc7HKDTJFO0TKg7ze
3N2pqFDMGTfWgLPeGu//DI6K1xr64hF5sD0HYwx6GUhYOSaO8IrPpg0CAwEAAaOC
Ac0wggHJMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEADOc4MB0GA1UdDgQW
BBRQm4HWkaUIgmBoq2ZqJQwff+v0PDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/
BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwZwYDVR0gBGAwXjBS
BgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6Ly93d3cuaW5jb21t
b24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAIBgZngQwBAgIwRAYD
VR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1yc2Eub3JnL0luQ29t
bW9uUlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+BggrBgEFBQcwAoYy
aHR0cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNBU2VydmVyQ0FfMi5j
cnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wJAYDVR0R
BB0wG4IZYXBwcy5jbmRscy5nZW9yZ2V0b3duLmVkdTANBgkqhkiG9w0BAQsFAAOC
AQEAKyTxzYsNXRAs/ACJVL4NfxPjf9QkwCYUbyYPJLWhp7xw3jY5zCpTLy6Sh8vw
Ee7JNDMH8DSwW/PTz0aWwN8s7BRm/jfEBATtMSygKbrCj/DzyxfWqGTypgE5nLXu
7DJXog/5ZdZv5Pn6KymYAMJDChEorciL5YYUNzDxD7wHsvlRTsuBc1ZebIFK9rXa
idl0P4zY+D2EDAnqSjdWq7r7lWNNi7qEQ5FrA5I+nbL+VhMX2k1SuwDDI61tqEej
zIjQjt7SfzJOJ5LoWwgsQbEAijodfnZtbBrkc0cvAFY9MEcNxZ6lYzdEZKnRPx4y
lGud/A9peukl8CiOMUwzRUOHxw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0d6bVnk3IpGc5k2LeA1
cJ4qN68j7b1eA0lGmxPnNe9WUjXZCR8w6E5Pn1I57aRVvw1IqmKoSWqk1cQF1m+3
nscqFW6bySbg8O4bkEgr5rql5Jb1jkD9GUG+qPLToB2ldRUh44nGI+9iT1EsOrGk
62i4BGf/lyTDemgA48buez38CWoCL7me4o9HqMk7G6q4+kFopggPh6dEaqVGpanR
rkrPj22FsD8/Wj4a1FJh6exUcVbE388BpLQ9hIFhYu6BEjpCd+yLl3c5Ym5zscoN
MkU7RMqDvN7c3amoUMwZN9aAs94a7/8MjorXGvriEXmwPQdjDHoZSFg5Jo7wis+m
DQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 158434181250909373447250426713111331323
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-17 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-10 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '20057'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '37th and O Streets'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Georgetown University'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UISO'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apps.cndls.georgetown.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24146763477938125141297542070241753370975590176657686771517372089584080982564292630366424953505278476408177361072770096986976970968704276869544597006188607549057007739459878453576630801365857056735436459440651302653553220406586661342889065807611485742861844580785693945564960806702239517188700052210239535193376239496303811522317361655645740009642669774989765831606814353030139328776267398349012715024746074005165180747559008198900038940203339538891235466485210990606349301377350881131510143205993438125466029288428472376530079897775493964458469489767031365537912487709344488353685104156110027229484242208037444494861
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							509b81d691a508826068ab666a250c1f7febf43c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.cndls.georgetown.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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