www.opia.psu.edu
- The Pennsylvania State University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 89:1d:63:37:df:30:b2:ac:fd:29:67:1e:d7:31:56:81 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Pennsylvania State University
Organization:
The Pennsylvania State University
Organization unit: Office of Planning and Institutional Assessment
Organization unit: Office of Planning and Institutional Assessment
Postal code:
16802
State / Province: PA
Locality: University Park
Country: US
State / Province: PA
Locality: University Park
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 89:1d:63:37:df:30:b2:ac:fd:29:67:1e:d7:31:56:81Serial Number (int): 182256824416604713790777099223450080897
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 33:ed:aa:dd:df:e6:12:c4:c5:0b:ca:30:8a:be:27:49:5d:17:46:f5
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 62:37:ce:3e:dd:fc:58:5f:ff:98:b6:41:89:10:0e:b5:07:e5:64:0a
Fingerprint (sha256): 01:4b:22:20:81:ef:bb:b9:57:0b:4b:30:aa:b5:d8:41:80:09:dc:06:b9:6d:e2:e1:bf:99:d3:f3:71:ce:4f:fc
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate www.opia.psu.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.opia.psu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.opia.psu.edu
Other certificates including the domain name psu.edu
(limited to 100 certificates)
cds4.cvent.com
pennstatehealthnews.org
nemesis.vmhost.psu.edu
apply.psu.edu
d5-gogreenfront.ddar.psu.edu
vpfa.psu.edu
5693703389708288-fe3.pantheonsite.io
crmcn-prd-db.windom.outreach.psu.edu
apps.opp.psu.edu
prod-web10.lionpath.psu.edu
idashboard.hbg.psu.edu
svrp.psu.edu
www.causeweb.org
harrelllibcal.library.psu.edu
carpepm.almonds.com
webfiles.psu.edu
harrell.library.psu.edu
fandb.psu.edu
coaction.psu.edu
us.prod.campusgroups.com
qaauth.libraries.psu.edu
online.ist.psu.edu
morph-331.vmhost.psu.edu
angelshibaccept.ais.psu.edu
schoolresources.militaryfamilies.psu.edu
hrservdc.ohrrider.psu.edu
ssc1.wpsu.psu.edu
watchdog.vmhost.psu.edu
mkt-prod-db.windom.outreach.psu.edu
scholarsphere-qa.dlt.psu.edu
secure.smeal.psu.edu
collegian.psu.edu
www.ems.psu.edu
www.solutions2wxrisk.psu.edu
ucdc.edu
methodology.psu.edu
us.prod.campusgroups.com
ezaccess.libraries.psu.edu
usegalaxy.org
apps.tlt.psu.edu
alumni.libraries.psu.edu
exchange.ag.psu.edu
nartc.fcm.arizona.edu
egsc.psu.edu
calendar.sdzsafaripark.org
grafana.ais.psu.edu
artedu.vmhost.psu.edu
com-ce.vmhost.psu.edu
www.engr.psu.edu
webdev.research.psu.edu
mrsec.psu.edu
isserv83.psuas.psu.edu
nrotc.psu.edu
www.bookrequest.psu.edu
ocaltest.aset.psu.edu
courses.schoolresources.militaryfamilies.psu.edu
5693703389708288-fe3.pantheonsite.io
openid.et-test.psu.edu
f1adp-smartpark.ad.psu.edu
current.it.psu.edu
cas-cp-01.ag.psu.edu
inclusivity.psu.edu
vivid.cse.psu.edu
morgancenter.psu.edu
www.vmhost.psu.edu
www.studentloans.psu.edu
cds4.cvent.com
math.science.psu.edu
uconnectlabs.com
chat.pshs.psu.edu
cpy-web1.lionpath.psu.edu
campusmap.psu.edu
www.opia.psu.edu
science.aws.science.psu.edu
genuinerisk.bmb.psu.edu
delta.csec-cra.psu.edu
cdn-test.battlefields.org
psualert-test.iam.psu.edu
e8-pnc-sep.ad.psu.edu
staging.aws.science.psu.edu
test.eis.uw.edu
dev.e-education.psu.edu
admissions.med.psu.edu
etda-explore-prod.libraries.psu.edu
secure.wpsu.psu.edu
www2.ems.psu.edu
admin.hhdev.psu.edu
citeak.multidevcom.uaf.edu
newton.vmhost.psu.edu
5693703389708288-fe3.pantheonsite.io
www.design-engineering.princeton.edu
latinocaucus.psu.edu
jupyterhub.ist.psu.edu
uconnectlabs.com
thrive.psu.edu
admin.odiapp-d01.lionpath.psu.edu
richc.et-test.psu.edu
qa.libraries.psu.edu
elections.psu.edu
sni.cloudflaressl.com
pennstatehealthnews.org
nemesis.vmhost.psu.edu
apply.psu.edu
d5-gogreenfront.ddar.psu.edu
vpfa.psu.edu
5693703389708288-fe3.pantheonsite.io
crmcn-prd-db.windom.outreach.psu.edu
apps.opp.psu.edu
prod-web10.lionpath.psu.edu
idashboard.hbg.psu.edu
svrp.psu.edu
www.causeweb.org
harrelllibcal.library.psu.edu
carpepm.almonds.com
webfiles.psu.edu
harrell.library.psu.edu
fandb.psu.edu
coaction.psu.edu
us.prod.campusgroups.com
qaauth.libraries.psu.edu
online.ist.psu.edu
morph-331.vmhost.psu.edu
angelshibaccept.ais.psu.edu
schoolresources.militaryfamilies.psu.edu
hrservdc.ohrrider.psu.edu
ssc1.wpsu.psu.edu
watchdog.vmhost.psu.edu
mkt-prod-db.windom.outreach.psu.edu
scholarsphere-qa.dlt.psu.edu
secure.smeal.psu.edu
collegian.psu.edu
www.ems.psu.edu
www.solutions2wxrisk.psu.edu
ucdc.edu
methodology.psu.edu
us.prod.campusgroups.com
ezaccess.libraries.psu.edu
usegalaxy.org
apps.tlt.psu.edu
alumni.libraries.psu.edu
exchange.ag.psu.edu
nartc.fcm.arizona.edu
egsc.psu.edu
calendar.sdzsafaripark.org
grafana.ais.psu.edu
artedu.vmhost.psu.edu
com-ce.vmhost.psu.edu
www.engr.psu.edu
webdev.research.psu.edu
mrsec.psu.edu
isserv83.psuas.psu.edu
nrotc.psu.edu
www.bookrequest.psu.edu
ocaltest.aset.psu.edu
courses.schoolresources.militaryfamilies.psu.edu
5693703389708288-fe3.pantheonsite.io
openid.et-test.psu.edu
f1adp-smartpark.ad.psu.edu
current.it.psu.edu
cas-cp-01.ag.psu.edu
inclusivity.psu.edu
vivid.cse.psu.edu
morgancenter.psu.edu
www.vmhost.psu.edu
www.studentloans.psu.edu
cds4.cvent.com
math.science.psu.edu
uconnectlabs.com
chat.pshs.psu.edu
cpy-web1.lionpath.psu.edu
campusmap.psu.edu
www.opia.psu.edu
science.aws.science.psu.edu
genuinerisk.bmb.psu.edu
delta.csec-cra.psu.edu
cdn-test.battlefields.org
psualert-test.iam.psu.edu
e8-pnc-sep.ad.psu.edu
staging.aws.science.psu.edu
test.eis.uw.edu
dev.e-education.psu.edu
admissions.med.psu.edu
etda-explore-prod.libraries.psu.edu
secure.wpsu.psu.edu
www2.ems.psu.edu
admin.hhdev.psu.edu
citeak.multidevcom.uaf.edu
newton.vmhost.psu.edu
5693703389708288-fe3.pantheonsite.io
www.design-engineering.princeton.edu
latinocaucus.psu.edu
jupyterhub.ist.psu.edu
uconnectlabs.com
thrive.psu.edu
admin.odiapp-d01.lionpath.psu.edu
richc.et-test.psu.edu
qa.libraries.psu.edu
elections.psu.edu
sni.cloudflaressl.com
Certificate
The complete raw certificate details for www.opia.psu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIRAIkdYzffMLKs/SlnHtcxVoEwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTYwMzE1MDAwMDAwWhcNMTcwMzE1 MjM1OTU5WjCBxTELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTE2ODAyMQswCQYDVQQI EwJQQTEYMBYGA1UEBxMPVW5pdmVyc2l0eSBQYXJrMSowKAYDVQQKEyFUaGUgUGVu bnN5bHZhbmlhIFN0YXRlIFVuaXZlcnNpdHkxODA2BgNVBAsTL09mZmljZSBvZiBQ bGFubmluZyBhbmQgSW5zdGl0dXRpb25hbCBBc3Nlc3NtZW50MRkwFwYDVQQDExB3 d3cub3BpYS5wc3UuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 2lNZlkc5U+3F7KSgx7/F+EbsMXDo5aZ+qy3W6W8djfkjQetAuKS83V9bsVLNTaOi O+gFGFIs3BH/PGj7w3noSvVMR1u+kFT3TAq3ySSxwi5+xCW5PhxrnaBuzoBrTRr5 zRvD++YZe91DwiVEksDjdaMq0/qnskAPgPSlNOezsFS68RLiScXz5aBnjpihgiZ/ 5JPZIN/wfz1pTpstLuZEqT31ghKiVPAqqJWx/bNNBNssHgibW7043gIOe5fItoDw TAhlEZAzqdEHWFblycBSXwAS/4tGmcjaUS0dAwSRdlTjBQqIQRb7PBzJl7bEOD1W dSo354w+yKZQQS9me5cIxwIDAQABo4IBxDCCAcAwHwYDVR0jBBgwFoAUHgWjd49s luJbh0umtIascQAM5zgwHQYDVR0OBBYEFDPtqt3f5hLExQvKMIq+J0ldF0b1MA4G A1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMBATBCMEAGCCsGAQUF BwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9yZXBvc2l0b3J5L2Nw c19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1hjNodHRwOi8vY3Js LmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJDQS5jcmwwdQYIKwYB BQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20v SW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29j c3AudXNlcnRydXN0LmNvbTAbBgNVHREEFDASghB3d3cub3BpYS5wc3UuZWR1MA0G CSqGSIb3DQEBCwUAA4IBAQCEDHWt68IJB230kd1BVbXOU2oXUeAJ52H0t5L5E9iQ I0kMZSEM8vJvzrVSy9kYf95Oj7if3vfQ+r9bzzu/wY8YFjbeVZ0l/MJQkbsLm81k Xw31kHYmVqvqtWay0Lg4OT5Aj55A7nZYrgjJ8XiRfpYEzOzVeSHduBIRljRXLHXb nec2AhAgktB3yc8/WCIpR5SVh+Xi61DKQaTtXON62KIV4zIijeZeONcgSzkUsyYp yB+5a5YgejVRCidgkDbqFXENGMvwmqme8vO7sUfuDITatGCUslA6PszWXM2yTwpt w5nVFRNLNLo9yl9ksBgBgyb/Thbcfucaf20cyw2K/xQ8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2lNZlkc5U+3F7KSgx7/F +EbsMXDo5aZ+qy3W6W8djfkjQetAuKS83V9bsVLNTaOiO+gFGFIs3BH/PGj7w3no SvVMR1u+kFT3TAq3ySSxwi5+xCW5PhxrnaBuzoBrTRr5zRvD++YZe91DwiVEksDj daMq0/qnskAPgPSlNOezsFS68RLiScXz5aBnjpihgiZ/5JPZIN/wfz1pTpstLuZE qT31ghKiVPAqqJWx/bNNBNssHgibW7043gIOe5fItoDwTAhlEZAzqdEHWFblycBS XwAS/4tGmcjaUS0dAwSRdlTjBQqIQRb7PBzJl7bEOD1WdSo354w+yKZQQS9me5cI xwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 182256824416604713790777099223450080897 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '16802' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University Park' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Pennsylvania State University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of Planning and Institutional Assessment' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.opia.psu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27561051874477187526148758634877356986574934023695183838911891254994215069033784924312821542768247978823248038836206248454044856173296325963214016074030094394300206734194751761611631934309997514972070670612386939575511183024796114360527005059326900338106882523119044595890221115192988982630764894975303791416697834164298684923034500568825585362276162107672958838208847498417131043385536795320811294542842048328317432094587241558358523668862526272407913536284594415392647586970297640029463082485571369359266657617208774709689824404225645795639924792164072209100703927695459306297209718436651592550085095145879335536839 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33edaadddfe612c4c50bca308abe27495d1746f5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.opia.psu.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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