privacycert.cs.cmu.edu
- Carnegie Mellon University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 66:17:7e:bd:3a:09:56:7f:4e:b9:8b:d3:a4:e1:32:f8 was issued on by Internet2.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Carnegie Mellon University
Organization:
Carnegie Mellon University
Organization unit: School of Computer Science
Organization unit: School of Computer Science
State / Province:
Pennsylvania
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 66:17:7e:bd:3a:09:56:7f:4e:b9:8b:d3:a4:e1:32:f8Serial Number (int): 135703248973501914752019032843617383160
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: d7:29:b8:6c:2e:e6:f1:1b:33:ec:db:e8:f2:a7:72:a4:80:29:e8:85
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 57:87:90:11:78:c2:0e:cf:c8:5a:84:b4:96:e2:70:97:54:05:c4:42
Fingerprint (sha256): 01:88:5b:02:f7:95:c9:45:75:c1:da:31:79:91:4f:13:ac:88:b3:2e:01:26:b0:c1:4b:4d:9e:8a:9a:68:5f:ec
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate privacycert.cs.cmu.edu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for privacycert.cs.cmu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
privacycert.cs.cmu.edu
www.privacycert.cs.cmu.edu
www.privacycert.cs.cmu.edu
Other certificates including the domain name cmu.edu
(limited to 100 certificates)
yellowstone.andrew.cmu.edu
dev-andyjr.enrollment.cmu.edu
test-web-lws.edu.help
www.soa.cmu.edu
sfunder5cert.net
admissions.scs.cmu.edu
oli.cmu.edu
ultron.srv.cs.cmu.edu
*.oli.cmu.edu
blockchain.cylab.cmu.edu
admissions.emeritus.org
it.qatar.cmu.edu
cluster3.technolutions.net
5746569068412928-fe1.pantheonsite.io
ucdc.edu
cluster3.technolutions.net
www.architecture.cmu.edu
wtslocal2.srv.cs.cmu.edu
reporting.as.cmu.edu
csgapp.andrew.cmu.edu
apply.etc.cmu.edu
dvl-vhost-01.andrew.ad.cmu.edu
backend.academy.cs.cmu.edu
qtr-vdi-gtw-p01.qatar.cmu.edu
admission.qatar.cmu.edu
webhost.srv.cs.cmu.edu
cmu.stellic.com
5746569068412928-fe1.pantheonsite.io
innovation.cmu.edu
studentaid.cmu.edu
scsmydb2.andrew.cmu.edu
publishing.andrew.cmu.edu
esx-1.isri.cmu.edu
starrez-test.housing.cmu.edu
portal.cylab.cmu.edu
starrez-test.housing.cmu.edu
clusters2.andrew.cmu.edu
www.cmu.edu
ebstest.andrew.cmu.edu
puzzlehunt.club.cc.cmu.edu
test.eis.uw.edu
www.magazine.tepper.cmu.edu
shibboleth-test.andrew.cmu.edu
privacycert.cs.cmu.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
mbrooks-dev.net.cmu.edu
illiad.library.cmu.edu
cluster3.technolutions.net
nxterra.ucop.edu
resources.ideate.cmu.edu
fractions.cs.cmu.edu
cardinaltetra.coral.cs.cmu.edu
wtslocal1.srv.cs.cmu.edu
5746569068412928-fe1.pantheonsite.io
rohan.andrew.cmu.edu
rich.srv.cs.cmu.edu
cluster2.technolutions.net
scalefunder.net
rubeus.fac.cs.cmu.edu
puzzlehunt.club.cc.cmu.edu
cms-dev4.andrew.cmu.edu
sfunder5cert.net
sc.isri.cmu.edu
ulissigroup.cheme.cmu.edu
pgh-ad-temp.go.ece.cmu.edu
5741830645743616-fe1.pantheonsite.io
tickets.its.cit.cmu.edu
www.hcii.cs.cmu.edu
spiral-web.ece.cmu.edu
www.blogs.earthjustice.org
qatar.webiso.andrew.cmu.edu
stills.andrew.cmu.edu
exchange.soa.cmu.edu
scom.andrew.cmu.edu
memexqa.cs.cmu.edu
clusters.andrew.cmu.edu
5741830645743616-fe1.pantheonsite.io
webdev.colorado.edu
virtual2.unlv.edu
research-pp.stonybrook.edu
tepper-aid.andrew.cmu.edu
architecture.cmu.edu
recruiting.tepper.cmu.edu
kitchingroup.cheme.cmu.edu
hotline.andrew.cmu.edu
garrod.isri.cmu.edu
upenn-it.asc.upenn.edu
ssp.australia.cmu.edu
forms.qatar.cmu.edu
15721.courses.cs.cmu.edu
tls.automattic.com
faculty.ce.cmu.edu
bookstore.web.cmu.edu
apply.tepper.cmu.edu
web.phys.cmu.edu
olr-test.as.cmu.edu
faculty.ce.cmu.edu
gitlab.library.cmu.edu
bd-test.andrew.cmu.edu
dev-andyjr.enrollment.cmu.edu
test-web-lws.edu.help
www.soa.cmu.edu
sfunder5cert.net
admissions.scs.cmu.edu
oli.cmu.edu
ultron.srv.cs.cmu.edu
*.oli.cmu.edu
blockchain.cylab.cmu.edu
admissions.emeritus.org
it.qatar.cmu.edu
cluster3.technolutions.net
5746569068412928-fe1.pantheonsite.io
ucdc.edu
cluster3.technolutions.net
www.architecture.cmu.edu
wtslocal2.srv.cs.cmu.edu
reporting.as.cmu.edu
csgapp.andrew.cmu.edu
apply.etc.cmu.edu
dvl-vhost-01.andrew.ad.cmu.edu
backend.academy.cs.cmu.edu
qtr-vdi-gtw-p01.qatar.cmu.edu
admission.qatar.cmu.edu
webhost.srv.cs.cmu.edu
cmu.stellic.com
5746569068412928-fe1.pantheonsite.io
innovation.cmu.edu
studentaid.cmu.edu
scsmydb2.andrew.cmu.edu
publishing.andrew.cmu.edu
esx-1.isri.cmu.edu
starrez-test.housing.cmu.edu
portal.cylab.cmu.edu
starrez-test.housing.cmu.edu
clusters2.andrew.cmu.edu
www.cmu.edu
ebstest.andrew.cmu.edu
puzzlehunt.club.cc.cmu.edu
test.eis.uw.edu
www.magazine.tepper.cmu.edu
shibboleth-test.andrew.cmu.edu
privacycert.cs.cmu.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
mbrooks-dev.net.cmu.edu
illiad.library.cmu.edu
cluster3.technolutions.net
nxterra.ucop.edu
resources.ideate.cmu.edu
fractions.cs.cmu.edu
cardinaltetra.coral.cs.cmu.edu
wtslocal1.srv.cs.cmu.edu
5746569068412928-fe1.pantheonsite.io
rohan.andrew.cmu.edu
rich.srv.cs.cmu.edu
cluster2.technolutions.net
scalefunder.net
rubeus.fac.cs.cmu.edu
puzzlehunt.club.cc.cmu.edu
cms-dev4.andrew.cmu.edu
sfunder5cert.net
sc.isri.cmu.edu
ulissigroup.cheme.cmu.edu
pgh-ad-temp.go.ece.cmu.edu
5741830645743616-fe1.pantheonsite.io
tickets.its.cit.cmu.edu
www.hcii.cs.cmu.edu
spiral-web.ece.cmu.edu
www.blogs.earthjustice.org
qatar.webiso.andrew.cmu.edu
stills.andrew.cmu.edu
exchange.soa.cmu.edu
scom.andrew.cmu.edu
memexqa.cs.cmu.edu
clusters.andrew.cmu.edu
5741830645743616-fe1.pantheonsite.io
webdev.colorado.edu
virtual2.unlv.edu
research-pp.stonybrook.edu
tepper-aid.andrew.cmu.edu
architecture.cmu.edu
recruiting.tepper.cmu.edu
kitchingroup.cheme.cmu.edu
hotline.andrew.cmu.edu
garrod.isri.cmu.edu
upenn-it.asc.upenn.edu
ssp.australia.cmu.edu
forms.qatar.cmu.edu
15721.courses.cs.cmu.edu
tls.automattic.com
faculty.ce.cmu.edu
bookstore.web.cmu.edu
apply.tepper.cmu.edu
web.phys.cmu.edu
olr-test.as.cmu.edu
faculty.ce.cmu.edu
gitlab.library.cmu.edu
bd-test.andrew.cmu.edu
Certificate
The complete raw certificate details for privacycert.cs.cmu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+jCCBeKgAwIBAgIQZhd+vToJVn9OuYvTpOEy+DANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMTEyMDkwMDAwMDBaFw0yMzAxMDky MzU5NTlaMIGPMQswCQYDVQQGEwJVUzEVMBMGA1UECBMMUGVubnN5bHZhbmlhMSMw IQYDVQQKExpDYXJuZWdpZSBNZWxsb24gVW5pdmVyc2l0eTEjMCEGA1UECxMaU2No b29sIG9mIENvbXB1dGVyIFNjaWVuY2UxHzAdBgNVBAMTFnByaXZhY3ljZXJ0LmNz LmNtdS5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgZQ7cza0J tvQR7JO8gBIXbTiyCdMqfSPqubSMxVLlJExnsAhoW/Ga7nBeyxB8zxPJpTc9IRab XbjcPfh+OsZNcELsoJGVCAAp7mGqFFlH9mmvp4XrY83vMIKkks42O0vBlU13ouZa IcZtJIS0BSyKTpaPUR2FymjtPzlEv5/ifLVLKsRhtmNAXTZqf64+a+81eckQw9Hh MbioTdsPbyDm/9etsCAcRDrKDmkup/Jo7oxLbtqb8WsIiBmUzFQ00aQacz3JtjAJ XS7r8dX9HEjuRvlEyOYXZOygFqzp/k46UVgUUy+pLzI/HIB7CgnQzTvymfC294QN spKBF7eCQH5rAgMBAAGjggNoMIIDZDAfBgNVHSMEGDAWgBQeBaN3j2yW4luHS6a0 hqxxAAznODAdBgNVHQ4EFgQU1ym4bC7m8Rsz7Nvo8qdypIAp6IUwDgYDVR0PAQH/ BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMGcGA1UdIARgMF4wUgYMKwYBBAGuIwEEAwEBMEIwQAYIKwYBBQUHAgEWNGh0 dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3JlcG9zaXRvcnkvY3BzX3NzbC5w ZGYwCAYGZ4EMAQICMEQGA1UdHwQ9MDswOaA3oDWGM2h0dHA6Ly9jcmwuaW5jb21t b24tcnNhLm9yZy9JbkNvbW1vblJTQVNlcnZlckNBLmNybDB1BggrBgEFBQcBAQRp MGcwPgYIKwYBBQUHMAKGMmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9JbkNvbW1v blJTQVNlcnZlckNBXzIuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2Vy dHJ1c3QuY29tMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdwCt9776fP8QyIud PZwePhhqtGcpXc+xDCTKhYY069yCigAAAX2cjwHBAAAEAwBIMEYCIQDwRtWrcm45 WOvqVVVt1v9k/WW/N31d/xpx+OZhUpBKOwIhAMW2PCK7Ieoku6nRmFOy7JtE1fb+ C/8vQEE3/CpOiLT+AHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IA AAF9nI8BgQAABAMARjBEAiBumSWIIHkAmIBVswn1lqCzR+OBanotsKVg6ndK64gV swIgGVNkH5MKg8egwb4JvCrwlB11qjroIlwAanY/O/ByM7AAdgDoPtDaPvUGNTLn Vyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAX2cjwFXAAAEAwBHMEUCIQD4Ti1qcIps M+Mau9UDufdtwQwnAScfHfhXb1b3Ho3f8wIgWZoamkf0MYXAHbTc/AGwBL2AEnLl SJO3i/f0dIkVcSswPQYDVR0RBDYwNIIWcHJpdmFjeWNlcnQuY3MuY211LmVkdYIa d3d3LnByaXZhY3ljZXJ0LmNzLmNtdS5lZHUwDQYJKoZIhvcNAQELBQADggEBAF12 1l3+/gH+24c4bV4lQp7rjYodG6U702AJKsjGkMjaBXB4RGkVJv+6loLuyxjF6+Lx SZED6VG9L1SeWZ/PWxNSgk8Be1p/9MRwZLXQuoS6Vp8Cbj1mNAbvVypg/KOlb1f/ y6G7qBJSJI/ZWpvBS1p+bzetkC+MrObNzZnnoUM39XS4qcHVWVUDBUfGez6W8H03 HmM1JuP5xU7ro8viy3BwCCkW+94pdC34w1XGc3I9LGU7rN/JGBWiLe4hRoasieZO RAI8o2amkszhwEloM63y5h5WFCUy2iJKPX0NzqZb6YYCp+6BK3hdJNfdaNgrQtaG CkBUm4JMIZ2XSh7GMXw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4GUO3M2tCbb0EeyTvIAS F204sgnTKn0j6rm0jMVS5SRMZ7AIaFvxmu5wXssQfM8TyaU3PSEWm1243D34fjrG TXBC7KCRlQgAKe5hqhRZR/Zpr6eF62PN7zCCpJLONjtLwZVNd6LmWiHGbSSEtAUs ik6Wj1Edhcpo7T85RL+f4ny1SyrEYbZjQF02an+uPmvvNXnJEMPR4TG4qE3bD28g 5v/XrbAgHEQ6yg5pLqfyaO6MS27am/FrCIgZlMxUNNGkGnM9ybYwCV0u6/HV/RxI 7kb5RMjmF2TsoBas6f5OOlFYFFMvqS8yPxyAewoJ0M078pnwtveEDbKSgRe3gkB+ awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 135703248973501914752019032843617383160 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Carnegie Mellon University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'School of Computer Science' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'privacycert.cs.cmu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28327213897475519196428786842484384402901513805677154264700870439638000063077204955883574709338162474877797580655908966126104246080162928656727633268733010762935640991075653201224770636434577569283973603505718150309562973980216231201070060625810121167662962606155345180653100523787033555031513420751019448200934183268286700993774521476721567341449951985888357960539343720545314558433707025026848283652899325475440206898184232688124126390959671486588481855414606747149943479503692681150183265362692077949064200849709592428254974130324480819561646868096352514673406851579955716944682159928986827584357253803088883514987 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d729b86c2ee6f11b33ecdbe8f2a772a48029e885 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'privacycert.cs.cmu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.privacycert.cs.cmu.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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