shibboleth-test.andrew.cmu.edu
- Carnegie Mellon University -
Issued by COMODO High-Assurance Secure Server CA
About this certificate
This digital certificate with serial number a0:0e:58:3c:82:6f:c2:e3:32:50:b9:97:97:1e:f6:1e was issued on by COMODO CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Carnegie Mellon University
Organization:
Carnegie Mellon University
Organization unit: CMU Domain
Organization unit: Hosted by Carnegie Mellon University
Organization unit: PlatinumSSL
Organization unit: CMU Domain
Organization unit: Hosted by Carnegie Mellon University
Organization unit: PlatinumSSL
Address:
5000 Forbes Ave
Postal code: 15213
State / Province: PA
Locality: Pittsburgh
Country: US
Postal code: 15213
State / Province: PA
Locality: Pittsburgh
Country: US
COMODO CA Limited
Organization:
COMODO CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): a0:0e:58:3c:82:6f:c2:e3:32:50:b9:97:97:1e:f6:1eSerial Number (int): 212750961127709061827152385540827837982
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 22:a6:20:b5:35:74:b5:e2:b5:c5:93:9a:55:54:68:9c:d6:e6:08:34
AuthorityKeyId: 3f:d5:b5:d0:d6:44:79:50:4a:17:a3:9b:8c:4a:dc:b8:b0:22:64:6b
Fingerprint (sha1): b5:52:1d:d4:c7:63:5d:47:18:d0:e6:4b:07:34:51:ac:83:20:9b:81
Fingerprint (sha256): 01:71:af:98:a8:d2:3d:31:fb:73:3b:62:39:23:d8:7c:8e:93:60:42:a8:81:86:2e:67:43:94:78:e2:61:b5:34
Issuing Certificate URL: http://crt.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crl
Check the revocation status for certificate shibboleth-test.andrew.cmu.edu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shibboleth-test.andrew.cmu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shibboleth-test.andrew.cmu.edu
www.shibboleth-test.andrew.cmu.edu
www.shibboleth-test.andrew.cmu.edu
Other certificates including the domain name cmu.edu
(limited to 100 certificates)
yellowstone.andrew.cmu.edu
dev-andyjr.enrollment.cmu.edu
test-web-lws.edu.help
www.soa.cmu.edu
sfunder5cert.net
admissions.scs.cmu.edu
oli.cmu.edu
ultron.srv.cs.cmu.edu
*.oli.cmu.edu
blockchain.cylab.cmu.edu
admissions.emeritus.org
it.qatar.cmu.edu
cluster3.technolutions.net
5746569068412928-fe1.pantheonsite.io
ucdc.edu
cluster3.technolutions.net
www.architecture.cmu.edu
wtslocal2.srv.cs.cmu.edu
reporting.as.cmu.edu
csgapp.andrew.cmu.edu
apply.etc.cmu.edu
dvl-vhost-01.andrew.ad.cmu.edu
backend.academy.cs.cmu.edu
qtr-vdi-gtw-p01.qatar.cmu.edu
admission.qatar.cmu.edu
webhost.srv.cs.cmu.edu
cmu.stellic.com
5746569068412928-fe1.pantheonsite.io
innovation.cmu.edu
studentaid.cmu.edu
scsmydb2.andrew.cmu.edu
publishing.andrew.cmu.edu
esx-1.isri.cmu.edu
starrez-test.housing.cmu.edu
portal.cylab.cmu.edu
starrez-test.housing.cmu.edu
clusters2.andrew.cmu.edu
www.cmu.edu
ebstest.andrew.cmu.edu
puzzlehunt.club.cc.cmu.edu
test.eis.uw.edu
www.magazine.tepper.cmu.edu
shibboleth-test.andrew.cmu.edu
privacycert.cs.cmu.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
mbrooks-dev.net.cmu.edu
illiad.library.cmu.edu
cluster3.technolutions.net
nxterra.ucop.edu
resources.ideate.cmu.edu
fractions.cs.cmu.edu
cardinaltetra.coral.cs.cmu.edu
wtslocal1.srv.cs.cmu.edu
5746569068412928-fe1.pantheonsite.io
rohan.andrew.cmu.edu
rich.srv.cs.cmu.edu
cluster2.technolutions.net
scalefunder.net
rubeus.fac.cs.cmu.edu
puzzlehunt.club.cc.cmu.edu
cms-dev4.andrew.cmu.edu
sfunder5cert.net
sc.isri.cmu.edu
ulissigroup.cheme.cmu.edu
pgh-ad-temp.go.ece.cmu.edu
5741830645743616-fe1.pantheonsite.io
tickets.its.cit.cmu.edu
www.hcii.cs.cmu.edu
spiral-web.ece.cmu.edu
www.blogs.earthjustice.org
qatar.webiso.andrew.cmu.edu
stills.andrew.cmu.edu
exchange.soa.cmu.edu
scom.andrew.cmu.edu
memexqa.cs.cmu.edu
clusters.andrew.cmu.edu
5741830645743616-fe1.pantheonsite.io
webdev.colorado.edu
virtual2.unlv.edu
research-pp.stonybrook.edu
tepper-aid.andrew.cmu.edu
architecture.cmu.edu
recruiting.tepper.cmu.edu
kitchingroup.cheme.cmu.edu
hotline.andrew.cmu.edu
garrod.isri.cmu.edu
upenn-it.asc.upenn.edu
ssp.australia.cmu.edu
forms.qatar.cmu.edu
15721.courses.cs.cmu.edu
tls.automattic.com
faculty.ce.cmu.edu
bookstore.web.cmu.edu
apply.tepper.cmu.edu
web.phys.cmu.edu
olr-test.as.cmu.edu
faculty.ce.cmu.edu
gitlab.library.cmu.edu
bd-test.andrew.cmu.edu
dev-andyjr.enrollment.cmu.edu
test-web-lws.edu.help
www.soa.cmu.edu
sfunder5cert.net
admissions.scs.cmu.edu
oli.cmu.edu
ultron.srv.cs.cmu.edu
*.oli.cmu.edu
blockchain.cylab.cmu.edu
admissions.emeritus.org
it.qatar.cmu.edu
cluster3.technolutions.net
5746569068412928-fe1.pantheonsite.io
ucdc.edu
cluster3.technolutions.net
www.architecture.cmu.edu
wtslocal2.srv.cs.cmu.edu
reporting.as.cmu.edu
csgapp.andrew.cmu.edu
apply.etc.cmu.edu
dvl-vhost-01.andrew.ad.cmu.edu
backend.academy.cs.cmu.edu
qtr-vdi-gtw-p01.qatar.cmu.edu
admission.qatar.cmu.edu
webhost.srv.cs.cmu.edu
cmu.stellic.com
5746569068412928-fe1.pantheonsite.io
innovation.cmu.edu
studentaid.cmu.edu
scsmydb2.andrew.cmu.edu
publishing.andrew.cmu.edu
esx-1.isri.cmu.edu
starrez-test.housing.cmu.edu
portal.cylab.cmu.edu
starrez-test.housing.cmu.edu
clusters2.andrew.cmu.edu
www.cmu.edu
ebstest.andrew.cmu.edu
puzzlehunt.club.cc.cmu.edu
test.eis.uw.edu
www.magazine.tepper.cmu.edu
shibboleth-test.andrew.cmu.edu
privacycert.cs.cmu.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
mbrooks-dev.net.cmu.edu
illiad.library.cmu.edu
cluster3.technolutions.net
nxterra.ucop.edu
resources.ideate.cmu.edu
fractions.cs.cmu.edu
cardinaltetra.coral.cs.cmu.edu
wtslocal1.srv.cs.cmu.edu
5746569068412928-fe1.pantheonsite.io
rohan.andrew.cmu.edu
rich.srv.cs.cmu.edu
cluster2.technolutions.net
scalefunder.net
rubeus.fac.cs.cmu.edu
puzzlehunt.club.cc.cmu.edu
cms-dev4.andrew.cmu.edu
sfunder5cert.net
sc.isri.cmu.edu
ulissigroup.cheme.cmu.edu
pgh-ad-temp.go.ece.cmu.edu
5741830645743616-fe1.pantheonsite.io
tickets.its.cit.cmu.edu
www.hcii.cs.cmu.edu
spiral-web.ece.cmu.edu
www.blogs.earthjustice.org
qatar.webiso.andrew.cmu.edu
stills.andrew.cmu.edu
exchange.soa.cmu.edu
scom.andrew.cmu.edu
memexqa.cs.cmu.edu
clusters.andrew.cmu.edu
5741830645743616-fe1.pantheonsite.io
webdev.colorado.edu
virtual2.unlv.edu
research-pp.stonybrook.edu
tepper-aid.andrew.cmu.edu
architecture.cmu.edu
recruiting.tepper.cmu.edu
kitchingroup.cheme.cmu.edu
hotline.andrew.cmu.edu
garrod.isri.cmu.edu
upenn-it.asc.upenn.edu
ssp.australia.cmu.edu
forms.qatar.cmu.edu
15721.courses.cs.cmu.edu
tls.automattic.com
faculty.ce.cmu.edu
bookstore.web.cmu.edu
apply.tepper.cmu.edu
web.phys.cmu.edu
olr-test.as.cmu.edu
faculty.ce.cmu.edu
gitlab.library.cmu.edu
bd-test.andrew.cmu.edu
Certificate
The complete raw certificate details for shibboleth-test.andrew.cmu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGEDCCBPigAwIBAgIRAKAOWDyCb8LjMlC5l5ce9h4wDQYJKoZIhvcNAQEFBQAw gYkxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMS8wLQYD VQQDEyZDT01PRE8gSGlnaC1Bc3N1cmFuY2UgU2VjdXJlIFNlcnZlciBDQTAeFw0x MzA1MTQwMDAwMDBaFw0xNjA1MTMyMzU5NTlaMIIBATELMAkGA1UEBhMCVVMxDjAM BgNVBBETBTE1MjEzMQswCQYDVQQIEwJQQTETMBEGA1UEBxMKUGl0dHNidXJnaDEY MBYGA1UECRMPNTAwMCBGb3JiZXMgQXZlMSMwIQYDVQQKExpDYXJuZWdpZSBNZWxs b24gVW5pdmVyc2l0eTETMBEGA1UECxMKQ01VIERvbWFpbjEtMCsGA1UECxMkSG9z dGVkIGJ5IENhcm5lZ2llIE1lbGxvbiBVbml2ZXJzaXR5MRQwEgYDVQQLEwtQbGF0 aW51bVNTTDEnMCUGA1UEAxMec2hpYmJvbGV0aC10ZXN0LmFuZHJldy5jbXUuZWR1 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUrZmBnNgFpjqROA45ab w3z9dg5xLw4SKKx2wXqI2jHKb82FY5Y8uwouBmLHzVPjagH4YjJFDHLh0ePtWrRb NAwS5LeavtwIM91eeOzglvVTUJbtRDdAqCpnVf5pnJzpZQz6UUhybMB2giLtPFzW MlH+rKKqdFe43zmA3onyU2MkFNe8/VxejBp5w6eVkuO4u0zBDLzrhHRYGkakKrbx KuQug0T96ubjMVcYMBL/9kt/9REPbhFv9oJ2Dt04fX65+hlod9/BPMMCSUTJJLCY 5b6o6xjRIhxTFcZq0aaw494BWedlhTUcjDcW25rraV6Yi5vKEYsFicNxl6t4LTRY xQIDAQABo4IB9jCCAfIwHwYDVR0jBBgwFoAUP9W10NZEeVBKF6ObjErcuLAiZGsw HQYDVR0OBBYEFCKmILU1dLXitcWTmlVUaJzW5gg0MA4GA1UdDwEB/wQEAwIFoDAM BgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBQBgNV HSAESTBHMDsGDCsGAQQBsjEBAgEDBDArMCkGCCsGAQUFBwIBFh1odHRwczovL3Nl Y3VyZS5jb21vZG8uY29tL0NQUzAIBgZngQwBAgIwTwYDVR0fBEgwRjBEoEKgQIY+ aHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09NT0RPSGlnaC1Bc3N1cmFuY2VTZWN1 cmVTZXJ2ZXJDQS5jcmwwgYAGCCsGAQUFBwEBBHQwcjBKBggrBgEFBQcwAoY+aHR0 cDovL2NydC5jb21vZG9jYS5jb20vQ09NT0RPSGlnaC1Bc3N1cmFuY2VTZWN1cmVT ZXJ2ZXJDQS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNv bTBNBgNVHREERjBEgh5zaGliYm9sZXRoLXRlc3QuYW5kcmV3LmNtdS5lZHWCInd3 dy5zaGliYm9sZXRoLXRlc3QuYW5kcmV3LmNtdS5lZHUwDQYJKoZIhvcNAQEFBQAD ggEBAGSwu7BLNt+eh1u5rCSX0EXAhbssRvSdDBZynvNkphiHTBx0Xu6z+D/s4d50 Z2ehF6iHZSy/WdZgvsjZge9nFij8yRFqa36YGTM2aVJm4fM/PyV65xtOxV248KdR UeKm+1BGxFWYsF7mKmAF2TsFYSeEIFlrj1BMae46cpBBspPDYd8bBh6hX2mtC7gC BhUAwlNJQpxjrKssAvnoKjzWaKpaLN1m+soia3SWSob+DDPJDXOl5ZkFSRHdf1LL t2WDAJz2Mvsq/Omak+utyP//M9ud6R71eyoDNjkfw3mUR+G2Q3neB75cppfytcTK aGyb5jCDxl0OW7akPoUs1myYB4Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUrZmBnNgFpjqROA45ab w3z9dg5xLw4SKKx2wXqI2jHKb82FY5Y8uwouBmLHzVPjagH4YjJFDHLh0ePtWrRb NAwS5LeavtwIM91eeOzglvVTUJbtRDdAqCpnVf5pnJzpZQz6UUhybMB2giLtPFzW MlH+rKKqdFe43zmA3onyU2MkFNe8/VxejBp5w6eVkuO4u0zBDLzrhHRYGkakKrbx KuQug0T96ubjMVcYMBL/9kt/9REPbhFv9oJ2Dt04fX65+hlod9/BPMMCSUTJJLCY 5b6o6xjRIhxTFcZq0aaw494BWedlhTUcjDcW25rraV6Yi5vKEYsFicNxl6t4LTRY xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 212750961127709061827152385540827837982 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO High-Assurance Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '15213' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pittsburgh' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '5000 Forbes Ave' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Carnegie Mellon University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CMU Domain' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by Carnegie Mellon University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PlatinumSSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shibboleth-test.andrew.cmu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25410809197548366982808844074173279660853363689322133733745717844038131991482843459865206921175970555898719494851760405265414993075716440765025845664316885025634093335705200817302657444954071111076606505557981916157339406358575799829546149462143867804625371158595762397724145792002867364374668937135618886511489280816171704844407238740647455796446319824921245332481811801949922299887422052225760197695786738540813952093903443583290194097218812576630213625497703107491726009945039055442145250613961186914212061257331728842626792845685877308777483592038508578648668136768660392477497669449625362110351374317582604851397 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3fd5b5d0d64479504a17a39b8c4adcb8b022646b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 22a620b53574b5e2b5c5939a5554689cd6e60834 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibboleth-test.andrew.cmu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shibboleth-test.andrew.cmu.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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