aphid.ucdavis.edu

- University of California, Davis -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 7f:d2:a8:85:56:e8:b0:5d:d9:70:fc:d2:32:8c:7c:7c was issued on by Internet2.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of California, Davis

Organization: University of California, Davis
State / Province: California
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 7f:d2:a8:85:56:e8:b0:5d:d9:70:fc:d2:32:8c:7c:7c
Serial Number (int): 169905755814032672041065778839053696124
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 9a:7a:49:df:d0:eb:2e:69:6a:23:6a:18:99:3c:19:db:e9:15:d0:43
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 7b:10:72:13:fc:8a:3f:bd:aa:f6:2a:57:d2:27:a6:2d:04:e0:31:e6
Fingerprint (sha256): 01:a0:66:43:37:24:90:c2:3f:ab:7c:15:1a:64:7f:36:84:64:ec:0e:bc:7f:75:00:58:39:fa:f1:d3:c9:94:30

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate aphid.ucdavis.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for aphid.ucdavis.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

aphid.ucdavis.edu

Other certificates including the domain name ucdavis.edu

(limited to 100 certificates)
mytravel-apps.ucdavis.edu
health-stage.ucdavis.edu
bml.ucdavis.edu
cwec.ucdavis.edu
renfe.ucdavis.edu
test-web-lws.edu.help
payweb-dev.ucdavis.edu
axiomepm.ucdmc.ucdavis.edu
status.acquia.com
saintly.zeck.net
5719238044024832-fe2.pantheonsite.io
carpepm.almonds.com
developers.dss.ucdavis.edu
us.prod.campusgroups.com
bluefoxstatus.com
secure.vetmed.ucdavis.edu
staging.gifford.ucdavis.edu
numbernine.ucdavis.edu
it.uahs.arizona.edu
5719238044024832-fe2.pantheonsite.io
status.itsnationwide.com
org.ucdavis.edu
wcec.ucdavis.edu
breeze.ucdavis.edu
5733679603122176-fe4.pantheonsite.io
ucdc.edu
dev.cas.ucdavis.edu
status.takemepay.com
5644101080842240-fe2.pantheonsite.io
mobile.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
5648161435549696-fe2.pantheonsite.io
smtp.lib.ucdavis.edu
chertok.physics.ucdavis.edu
ais.ucdavis.edu
5648161435549696-fe2.pantheonsite.io
dual.ucdavis.edu
listings.ucdavis.edu
csiflabs.cs.ucdavis.edu
vidi.cs.ucdavis.edu
www.superfund.ucdavis.edu
*.gsm.ucdavis.edu
cmsi.ucdavis.edu
cntrics.ucdavis.edu
adxstatus.com
linlab.ucdavis.edu
igg.ucdavis.edu
davt-0703-x3-a.ucdmc.ucdavis.edu
5727950116749312-fe4.pantheonsite.io
5756292874371072-fe1.pantheonsite.io
tle.ucdavis.edu
pczt-win-lbk-a1.primate.ucdavis.edu
psa.ucdavis.edu
anthromuseum.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
asucd.ucdavis.edu
vpn.larry.ucdavis.edu
virtuallab.ucdavis.edu
5756292874371072-fe1.pantheonsite.io
scilhsapp01.ucdmc.ucdavis.edu
ces.ucdavis.edu
sfunder9cert.net
streetfilms.org
banner-api.gs.ucdavis.edu
stata.ucdavis.edu
horus.ucdavis.edu
gawsmith.ucdavis.edu
sfunder9cert.net
ceprod.ucdmc.ucdavis.edu
scdev03.ucdavis.edu
tls.automattic.com
banking-business-review.com
5747976207073280-fe2.pantheonsite.io
ionenterprise.ucdavis.edu
forensicscience.ucdavis.edu
cdn-test.battlefields.org
orcid.library.ucdavis.edu
virchow.ucdavis.edu
test.eis.uw.edu
pioneeringpunjabis.ucdavis.edu
linlab.ucdavis.edu
5742636757417984-fe1.pantheonsite.io
cnprc.ucdavis.edu
gap.ucdavis.edu
support.ucdavis.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
bob.cs.ucdavis.edu
placemaking.ucdavis.edu
aphid.ucdavis.edu
securedns.planmygift.org
5699257587728384-fe4.pantheonsite.io
messenger.dss.ucdavis.edu
moraleslab.ucdavis.edu
eu-status.walkme.com
5666083260334080-fe3.pantheonsite.io
wiki.cse.ucdavis.edu
sapep.api.cloud.ucdavis.edu
5666083260334080-fe3.pantheonsite.io
pb2.extensiononline.ucdavis.edu

Certificate

The complete raw certificate details for aphid.ucdavis.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIj5t8ownxp2Wf03v7KG
qxClE06DPXC2Vv09sGAreKX1ZaUmv5UHzRK36cylR+c7E3LAPyngw8B9u0e9oMuA
031zL0LFMCL7Q5ReByTQJYB6WAf0ZHNX/WmLYNpDhm+qjv08Esn8o5dUHKFGdKbv
j4lDTfg5YUXDm1kIE9lVDdY5H8dqGTDfX+8l4eGkmoNn3Vlng/MNDFPc1clrRL/8
DJC7f+Nhv8GqzmtmWwagGAnB8rb1JmJZafgI5M3FFGQB2Znr8ScKwrVEDbPvGj6z
XLB5UnkTukEDPsvbY/lyNlkd/sC+wYqPJ8olbyftb0DU/0Jd8DktYwTH33wcfV2f
PQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 169905755814032672041065778839053696124
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of California, Davis'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aphid.ucdavis.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20265673911661744507387808393318069270319852360890020389627825593043326795060841837531798907728871721812507408210642185657559481388451304888522711800183013826069123649094920071303297493724004653895142738822605966204926186679373869362401219839801820766075380368713805271193333006712110441976093584724307018681607371077557725295947806171947283702807017030226690910798248551584568432344217200550426156298640105943873761972552071498925030594255943068558902824042466720053910179254463255326696881878697738481454461474348791837649412419174925403703248482931283915384904784204951308505433109308313274429829724839075028770621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9a7a49dfd0eb2e696a236a18993c19dbe915d043
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aphid.ucdavis.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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