tmsdc02.shc.sa.nyu.edu

- New York University -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number d0:08:c2:df:25:c9:b0:d0:e9:22:40:33:a1:8e:c1:16 was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

New York University

Organization: New York University
Organization unit: ITS eServices
Address: 70 Washington Square South
Postal code: 10012
State / Province: NY
Locality: New York
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): d0:08:c2:df:25:c9:b0:d0:e9:22:40:33:a1:8e:c1:16
Serial Number (int): 276524913965168903733384762182616400150
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 76:78:eb:1c:32:62:37:d3:6b:39:9e:25:c8:47:46:29:25:2a:f6:95
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): fe:4c:95:a9:0e:a7:de:83:0d:09:45:41:6b:4e:ca:79:d8:a5:93:2f
Fingerprint (sha256): 01:90:8d:57:8b:24:cd:20:2c:aa:4b:7a:a8:a8:73:f1:7a:c2:ea:fc:99:13:c9:4c:d0:e8:40:f2:2a:66:90:90

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate tmsdc02.shc.sa.nyu.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tmsdc02.shc.sa.nyu.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

tmsdc02.shc.sa.nyu.edu

Other certificates including the domain name nyu.edu

(limited to 100 certificates)
nyush-nac1.shanghai.nyu.edu
hosting.nyu.edu
rits.hosting.nyu.edu
rebekahrust.hosting.nyu.edu
ssoprod.its.nyu.edu
zora.hosting.nyu.edu
giki.hosting.nyu.edu
diploma.sps.nyu.edu
5648867420798976-fe4.pantheonsite.io
fastmri.med.nyu.edu
fcl.law.nyu.edu
mobileprint.nyu.edu
admissions.emeritus.org
cluster3.technolutions.net
pdsdev.library.nyu.edu
5676582576324608-fe3.pantheonsite.io
cluster3.technolutions.net
applicant.stern.nyu.edu
katejustement.hosting.nyu.edu
heng.hosting.nyu.edu
drkjlancaster.hosting.nyu.edu
klaporta.hosting.nyu.edu
sueannlau.hosting.nyu.edu
recreationregistration.nyu.edu
dcone.hosting.nyu.edu
makerspace.engineering.nyu.edu
shanghai.hosting.nyu.edu
cairoash.hosting.nyu.edu
laurafranklin-hall.hosting.nyu.edu
ssl714081.cloudflaressl.com
tolga.hosting.nyu.edu
greenestuff.hosting.nyu.edu
tisch.nyu.edu
cb.engineering.nyu.edu
5629935204958208-fe2.pantheonsite.io
newborn.hosting.nyu.edu
dslinks.hosting.nyu.edu
holostor.hpc.nyu.edu
cas02pmvwi.shc.sa.nyu.edu
bennyboy.hosting.nyu.edu
drr.cfs.nyu.edu
j3.shared.global.fastly.net
affiliate-snd.albert.its.nyu.edu
webinar.online.engineering.nyu.edu
nyush.hosting.nyu.edu
marl.smusic.nyu.edu
isdm.nyu.edu
sliu.hosting.nyu.edu
shibboleth.nyu.edu
kimmelonestop.nyu.edu
underrights.hosting.nyu.edu
cybersymposium.engineering.nyu.edu
vgc.poly.edu
debrajlevine.hosting.nyu.edu
banking-business-review.com
cga.hosting.nyu.edu
keywords.nyupress.org
sl5298.hosting.nyu.edu
christinexu.hosting.nyu.edu
rh.abudhabi.nyu.edu
shanghai.hosting.nyu.edu
home.nyu.edu
tmsdc02.shc.sa.nyu.edu
osiris.cyber.nyu.edu
jose.hosting.nyu.edu
katejustement.hosting.nyu.edu
violetnetwork.nyu.edu
koh.hosting.nyu.edu
whyb.hosting.nyu.edu
balletcenter.nyu.edu
eatingglobally.heatherruthlee.hosting.nyu.edu
vh-b7-te.law.nyu.edu
spanua3.hosting.nyu.edu
cluster3.technolutions.net
shanghai.hosting.nyu.edu
englishchannel.hosting.nyu.edu
textbooks.shanghai.nyu.edu
engage.its.nyu.edu
cga.hosting.nyu.edu
ais-web.stern.nyu.edu
*.stern.nyu.edu
wormtails.bio.nyu.edu
banking-business-review.com
seungguini.hosting.nyu.edu
laraybabrar.hosting.nyu.edu
learn.gencore.bio.nyu.edu
cluster2.technolutions.net
alicezhao.com
sofie.stern.nyu.edu
isdm.nyu.edu
fasedtech.hosting.nyu.edu
alyazia.hosting.nyu.edu
vgc.poly.edu
5629935204958208-fe2.pantheonsite.io
hockygroup.hosting.nyu.edu
drkjlancaster.hosting.nyu.edu
nyuresearchsites.org
5676582576324608-fe3.pantheonsite.io
fame.nyu.edu
guantanamo.dlib.nyu.edu

Certificate

The complete raw certificate details for tmsdc02.shc.sa.nyu.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Tjo5rrQS/3cv/ixbHgP
mblt0FYk7Gl9SZ/i4QbJyd1PXWmrFF+ly8fm+paJlHSpgT1BzbU0K8jWf1SJ579f
JnEZ5jGSkTc9CE7aSAEYa7KQUCAg1rcAxtR8vFD7lsGuQqnIQMbxcjDwR7yblU4O
8KoJsGsf1B6ye9rEYGbWQJElfPnDwZMdYWUBkX1w0vYAdkHKCk/N8U3cBaqyWvys
o3XLMN1eohOtrocM9KiCY5xnTMGQ2z9sDUwiRB0rB2YqAG79AKvPZ3+fsU7Ap3F7
u9nb5m3uk3iqj9sMTeMat08dcLq/XTgU6km4bsW+bpBxLaSWAbVyAjtVJJhAdQk7
dQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 276524913965168903733384762182616400150
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-19 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-18 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '10012'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NY'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '70 Washington Square South'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York University'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ITS eServices'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tmsdc02.shc.sa.nyu.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29441588310934146912238073077681201819647243707439676955372628106352023230861584017175301479262177997209279774080373859832548286317596356995204871894182773846731887126439153298829754251734897186429371663893086808186250048148090236520036151812608894661955094184879383610553010146726440745095545478371951755618602908445720552088152910895817558785073607121123762642009151495454458612294910461968823491587152833706853931059857615381899510902218570405902474677408190853821975989138162749688151665405791867660689451755809614983010939427549539633407033689938716568094412141932022160730753294808681594889316707273022242372469
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7678eb1c326237d36b399e25c8474629252af695
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmsdc02.shc.sa.nyu.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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