pilot.cap.oit.umn.edu
- University of Minnesota -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 06:bf:a4:66:5c:b0:cf:46:30:48:7b:10:11:f2:bb:08 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Minnesota
Organization:
University of Minnesota
Organization unit: Office of Information Technology
Organization unit: Office of Information Technology
Address:
Suite 660
Address: 1300 S. 2nd St.
Postal code: 55454
State / Province: MN
Locality: Minneapolis
Country: US
Address: 1300 S. 2nd St.
Postal code: 55454
State / Province: MN
Locality: Minneapolis
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:bf:a4:66:5c:b0:cf:46:30:48:7b:10:11:f2:bb:08Serial Number (int): 8970431099823593315813255306007460616
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 91:c4:cb:86:53:32:02:3c:64:e6:99:8a:4c:ad:11:03:9c:5f:ef:d5
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): d0:95:d9:9c:03:6e:06:dc:56:8a:61:de:54:0f:e0:e5:63:99:5a:d7
Fingerprint (sha256): 01:7b:b7:5e:54:f3:fe:5d:2c:23:ef:1e:e0:54:01:26:0a:56:56:2b:97:54:f7:79:1b:2e:ad:4f:17:35:d1:3d
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate pilot.cap.oit.umn.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pilot.cap.oit.umn.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pilot.cap.oit.umn.edu
Other certificates including the domain name umn.edu
(limited to 100 certificates)
sni.cloudflaressl.com
sni.cloudflaressl.com
axiumssl-prod.ahc.umn.edu
ggg.umn.edu
rhrc.umn.edu
scholarship.law.umn.edu
stg-webfilesdev.ad.umn.edu
sni.cloudflaressl.com
p.acm.umn.edu
futureservicesinstitute.umn.edu
www.ncfpd.umn.edu
ceed.umn.edu
sni.cloudflaressl.com
www-test.hhh.umn.edu
ur.umn.edu
sni.cloudflaressl.com
www.finpack.umn.edu
test.statefair.umn.edu
bema.dash.umn.edu
research.cs.umn.edu
fmp.cla.umn.edu
sni.cloudflaressl.com
*.psepbizplan.umn.edu
msa.umn.edu
sni.cloudflaressl.com
www.claoit.umn.edu
nutnet.umn.edu
givingday.umn.edu
sni.cloudflaressl.com
incapsula.com
lawandinequality.org
sni.cloudflaressl.com
umartauth.umn.edu
umconnect-v9-test.oit.umn.edu
1819subfield.dash.umn.edu
itg-dev.oit.umn.edu
dairyknow.umn.edu
oreapps.d.umn.edu
sni.cloudflaressl.com
sl2-dev.d.umn.edu
cla-comm-copy-lw.d.umn.edu
sni.cloudflaressl.com
www.bellmuseum.umn.edu
provost.umn.edu
sni.cloudflaressl.com
controller.umn.edu
www.psych.umn.edu
usvcs-pvve022l.uservices.umn.edu
sni.cloudflaressl.com
umnd801.umn.edu
www.plantinfo.umn.edu
ds.umn.edu
fmresident-database.umn.edu
*.charfac.umn.edu
5659822271758336-fe3.pantheonsite.io
www.ahcs.umn.edu
camp.dash.umn.edu
clagency.umn.edu
requests.cseit.umn.edu
cpheo2.sph.umn.edu
p.acm.umn.edu
prodtest.extension.umn.edu
cf-test1.crk.umn.edu
printing.umn.edu
viviendasite.mbc.dash.umn.edu
cascw.umn.edu
sichl.dash.umn.edu
pias02-r.uservices.umn.edu
drivenvolunteers.umn.edu
madyun.dash.umn.edu
umnstandard.umn.edu
ecrt.oit.umn.edu
acm.umn.edu
sni.cloudflaressl.com
ici-risp-dev-api-01.oit.umn.edu
rt.msi.umn.edu
sunfish.biostat.umn.edu
pilot.cap.oit.umn.edu
emis-hub.ahc.umn.edu
aux400.auxs.umn.edu
sni.cloudflaressl.com
cpheo1.sph.umn.edu
sni.cloudflaressl.com
mnlink.org
drupalmigrate.umn.edu
incapsula.com
ihrca.dash.umn.edu
*.elevator.umn.edu
sni.cloudflaressl.com
*.law.umn.edu
www.msi.umn.edu
ahcauth.ahc.umn.edu
research-innovation.umn.edu
grouper.umn.edu
chan-lab.umn.edu
www.ofyp.umn.edu
www.afrotc.umn.edu
careers.cvm.umn.edu
lcms.ahc.umn.edu
sni.cloudflaressl.com
sni.cloudflaressl.com
axiumssl-prod.ahc.umn.edu
ggg.umn.edu
rhrc.umn.edu
scholarship.law.umn.edu
stg-webfilesdev.ad.umn.edu
sni.cloudflaressl.com
p.acm.umn.edu
futureservicesinstitute.umn.edu
www.ncfpd.umn.edu
ceed.umn.edu
sni.cloudflaressl.com
www-test.hhh.umn.edu
ur.umn.edu
sni.cloudflaressl.com
www.finpack.umn.edu
test.statefair.umn.edu
bema.dash.umn.edu
research.cs.umn.edu
fmp.cla.umn.edu
sni.cloudflaressl.com
*.psepbizplan.umn.edu
msa.umn.edu
sni.cloudflaressl.com
www.claoit.umn.edu
nutnet.umn.edu
givingday.umn.edu
sni.cloudflaressl.com
incapsula.com
lawandinequality.org
sni.cloudflaressl.com
umartauth.umn.edu
umconnect-v9-test.oit.umn.edu
1819subfield.dash.umn.edu
itg-dev.oit.umn.edu
dairyknow.umn.edu
oreapps.d.umn.edu
sni.cloudflaressl.com
sl2-dev.d.umn.edu
cla-comm-copy-lw.d.umn.edu
sni.cloudflaressl.com
www.bellmuseum.umn.edu
provost.umn.edu
sni.cloudflaressl.com
controller.umn.edu
www.psych.umn.edu
usvcs-pvve022l.uservices.umn.edu
sni.cloudflaressl.com
umnd801.umn.edu
www.plantinfo.umn.edu
ds.umn.edu
fmresident-database.umn.edu
*.charfac.umn.edu
5659822271758336-fe3.pantheonsite.io
www.ahcs.umn.edu
camp.dash.umn.edu
clagency.umn.edu
requests.cseit.umn.edu
cpheo2.sph.umn.edu
p.acm.umn.edu
prodtest.extension.umn.edu
cf-test1.crk.umn.edu
printing.umn.edu
viviendasite.mbc.dash.umn.edu
cascw.umn.edu
sichl.dash.umn.edu
pias02-r.uservices.umn.edu
drivenvolunteers.umn.edu
madyun.dash.umn.edu
umnstandard.umn.edu
ecrt.oit.umn.edu
acm.umn.edu
sni.cloudflaressl.com
ici-risp-dev-api-01.oit.umn.edu
rt.msi.umn.edu
sunfish.biostat.umn.edu
pilot.cap.oit.umn.edu
emis-hub.ahc.umn.edu
aux400.auxs.umn.edu
sni.cloudflaressl.com
cpheo1.sph.umn.edu
sni.cloudflaressl.com
mnlink.org
drupalmigrate.umn.edu
incapsula.com
ihrca.dash.umn.edu
*.elevator.umn.edu
sni.cloudflaressl.com
*.law.umn.edu
www.msi.umn.edu
ahcauth.ahc.umn.edu
research-innovation.umn.edu
grouper.umn.edu
chan-lab.umn.edu
www.ofyp.umn.edu
www.afrotc.umn.edu
careers.cvm.umn.edu
lcms.ahc.umn.edu
sni.cloudflaressl.com
Certificate
The complete raw certificate details for pilot.cap.oit.umn.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgIQBr+kZlywz0YwSHsQEfK7CDANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0xNDEyMTgwMDAwMDBaFw0xNzEyMTcy MzU5NTlaMIHbMQswCQYDVQQGEwJVUzEOMAwGA1UEERMFNTU0NTQxCzAJBgNVBAgT Ak1OMRQwEgYDVQQHEwtNaW5uZWFwb2xpczESMBAGA1UECRMJU3VpdGUgNjYwMRgw FgYDVQQJEw8xMzAwIFMuIDJuZCBTdC4xIDAeBgNVBAoTF1VuaXZlcnNpdHkgb2Yg TWlubmVzb3RhMSkwJwYDVQQLEyBPZmZpY2Ugb2YgSW5mb3JtYXRpb24gVGVjaG5v bG9neTEeMBwGA1UEAxMVcGlsb3QuY2FwLm9pdC51bW4uZWR1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSKL1cT96mFLeOygGz9lh6WV9aby2rFSdcK+ 0Vf5esRIUlnicG076Ihxt1f27hpM3yx/K7OkCxeQM6D3dQFcVmyZ6/l/Cza/yQxb qvRhUpv+kMt+Q2Kpwd/752zffLFVL1kKfLlTPG1tikd2NG/aUHMfOLmaqMRjTCt/ MC2wgioPpwskQl1Szun3nliEgyZeP1EWWPpAzNHZvrsXM6QeD2Cp/TgqjC7PstYg Gz7BGnpKBm6wa2FGzrOWRaT61Vc07f6G2u5NE1nz1cgBy+/H4RLMNTWTyVpmzy2U /PkVfhBLFM0eWN+ecUS4kl01Iq9O62vc1g0JMsgooWp7jQVx9wIDAQABo4IByTCC AcUwHwYDVR0jBBgwFoAUHgWjd49sluJbh0umtIascQAM5zgwHQYDVR0OBBYEFJHE y4ZTMgI8ZOaZikytEQOcX+/VMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAA MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsG AQQBriMBBAMBATBCMEAGCCsGAQUFBwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5v cmcvY2VydC9yZXBvc2l0b3J5L2Nwc19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8E PTA7MDmgN6A1hjNodHRwOi8vY3JsLmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25S U0FTZXJ2ZXJDQS5jcmwwdQYIKwYBBQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRw Oi8vY3J0LnVzZXJ0cnVzdC5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAl BggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTAgBgNVHREEGTAX ghVwaWxvdC5jYXAub2l0LnVtbi5lZHUwDQYJKoZIhvcNAQELBQADggEBAEEkYbQf Vy5Qn8A0I0NNUGvcPwJeAnDVaROLmY+AKDbwpxcCbdHzDWmPj0qsx3KF6C8FZweU n5n11hQ1tcUopkvdcFiIkivggRAvw1tB54Yw4+o0OoX4VbuGcEAiCtbaDt/UCv0f lnLpjyMIXs/vejIDUTcreePrYkcFoBRtW3h9IIdS2iX+7xuVDj96XSmEbRG4UUUe ex+E9s9NvbtzSZvegatSM2Kw6wHDuQM9zOfxBNZUh7ZMzkzZkHORNdSDB4XHct3p wxsIsfP1NYm+8auM00aRTZb56N0cLGDnng6w5PTDzDxQos9wtPDwj5ugmTKDPlJ3 e580IOUWSWV2Bfo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSKL1cT96mFLeOygGz9l h6WV9aby2rFSdcK+0Vf5esRIUlnicG076Ihxt1f27hpM3yx/K7OkCxeQM6D3dQFc VmyZ6/l/Cza/yQxbqvRhUpv+kMt+Q2Kpwd/752zffLFVL1kKfLlTPG1tikd2NG/a UHMfOLmaqMRjTCt/MC2wgioPpwskQl1Szun3nliEgyZeP1EWWPpAzNHZvrsXM6Qe D2Cp/TgqjC7PstYgGz7BGnpKBm6wa2FGzrOWRaT61Vc07f6G2u5NE1nz1cgBy+/H 4RLMNTWTyVpmzy2U/PkVfhBLFM0eWN+ecUS4kl01Iq9O62vc1g0JMsgooWp7jQVx 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8970431099823593315813255306007460616 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '55454' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Suite 660' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1300 S. 2nd St.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pilot.cap.oit.umn.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23371121799953814073640012138210933847439355930841100324596583670008516149874603356771592520349274920898095263993685090638785160480055284195933421219425206866056913046425562434915665820820865915046358817752836012629563450227814403576192980024901345585616360745142070441824707253792787532982648534230311327358001719952990180733882003623461929186918028975908259136791647842510912244547238468814697231359564227777323587504961008076915515795199629338327918170273393993273309257945408534827546875418461382998994466517803812300458084390864072882462431486999116888020302816427720998218860628218179073101765672163841593930231 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 91c4cb865332023c64e6998a4cad11039c5fefd5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pilot.cap.oit.umn.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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