resources.ideate.cmu.edu
- Carnegie Mellon University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number a7:4d:18:2c:05:f3:1c:5c:e3:b5:0e:96:9c:b4:ff:fe was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Carnegie Mellon University
Organization:
Carnegie Mellon University
State / Province:
Pennsylvania
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): a7:4d:18:2c:05:f3:1c:5c:e3:b5:0e:96:9c:b4:ff:feSerial Number (int): 222381372419899098733096748355985670142
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: dc:6e:40:3e:02:4e:47:a7:8e:2f:b2:6e:d9:65:03:4b:30:0b:78:77
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): cd:70:4e:33:ad:1b:3e:c6:ae:53:67:77:3b:69:59:e7:d6:e2:ab:89
Fingerprint (sha256): 01:d9:7b:10:86:03:79:1b:b4:57:fc:da:40:e3:65:1e:41:80:d9:1d:7e:98:c9:ae:55:6c:37:b7:a1:af:fa:ea
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate resources.ideate.cmu.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for resources.ideate.cmu.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
resources.ideate.cmu.edu
Other certificates including the domain name cmu.edu
(limited to 100 certificates)
yellowstone.andrew.cmu.edu
dev-andyjr.enrollment.cmu.edu
test-web-lws.edu.help
www.soa.cmu.edu
sfunder5cert.net
admissions.scs.cmu.edu
oli.cmu.edu
ultron.srv.cs.cmu.edu
*.oli.cmu.edu
blockchain.cylab.cmu.edu
admissions.emeritus.org
it.qatar.cmu.edu
cluster3.technolutions.net
5746569068412928-fe1.pantheonsite.io
ucdc.edu
cluster3.technolutions.net
www.architecture.cmu.edu
wtslocal2.srv.cs.cmu.edu
reporting.as.cmu.edu
csgapp.andrew.cmu.edu
apply.etc.cmu.edu
dvl-vhost-01.andrew.ad.cmu.edu
backend.academy.cs.cmu.edu
qtr-vdi-gtw-p01.qatar.cmu.edu
admission.qatar.cmu.edu
webhost.srv.cs.cmu.edu
cmu.stellic.com
5746569068412928-fe1.pantheonsite.io
innovation.cmu.edu
studentaid.cmu.edu
scsmydb2.andrew.cmu.edu
publishing.andrew.cmu.edu
esx-1.isri.cmu.edu
starrez-test.housing.cmu.edu
portal.cylab.cmu.edu
starrez-test.housing.cmu.edu
clusters2.andrew.cmu.edu
www.cmu.edu
ebstest.andrew.cmu.edu
puzzlehunt.club.cc.cmu.edu
test.eis.uw.edu
www.magazine.tepper.cmu.edu
shibboleth-test.andrew.cmu.edu
privacycert.cs.cmu.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
mbrooks-dev.net.cmu.edu
illiad.library.cmu.edu
cluster3.technolutions.net
nxterra.ucop.edu
resources.ideate.cmu.edu
fractions.cs.cmu.edu
cardinaltetra.coral.cs.cmu.edu
wtslocal1.srv.cs.cmu.edu
5746569068412928-fe1.pantheonsite.io
rohan.andrew.cmu.edu
rich.srv.cs.cmu.edu
cluster2.technolutions.net
scalefunder.net
rubeus.fac.cs.cmu.edu
puzzlehunt.club.cc.cmu.edu
cms-dev4.andrew.cmu.edu
sfunder5cert.net
sc.isri.cmu.edu
ulissigroup.cheme.cmu.edu
pgh-ad-temp.go.ece.cmu.edu
5741830645743616-fe1.pantheonsite.io
tickets.its.cit.cmu.edu
www.hcii.cs.cmu.edu
spiral-web.ece.cmu.edu
www.blogs.earthjustice.org
qatar.webiso.andrew.cmu.edu
stills.andrew.cmu.edu
exchange.soa.cmu.edu
scom.andrew.cmu.edu
memexqa.cs.cmu.edu
clusters.andrew.cmu.edu
5741830645743616-fe1.pantheonsite.io
webdev.colorado.edu
virtual2.unlv.edu
research-pp.stonybrook.edu
tepper-aid.andrew.cmu.edu
architecture.cmu.edu
recruiting.tepper.cmu.edu
kitchingroup.cheme.cmu.edu
hotline.andrew.cmu.edu
garrod.isri.cmu.edu
upenn-it.asc.upenn.edu
ssp.australia.cmu.edu
forms.qatar.cmu.edu
15721.courses.cs.cmu.edu
tls.automattic.com
faculty.ce.cmu.edu
bookstore.web.cmu.edu
apply.tepper.cmu.edu
web.phys.cmu.edu
olr-test.as.cmu.edu
faculty.ce.cmu.edu
gitlab.library.cmu.edu
bd-test.andrew.cmu.edu
dev-andyjr.enrollment.cmu.edu
test-web-lws.edu.help
www.soa.cmu.edu
sfunder5cert.net
admissions.scs.cmu.edu
oli.cmu.edu
ultron.srv.cs.cmu.edu
*.oli.cmu.edu
blockchain.cylab.cmu.edu
admissions.emeritus.org
it.qatar.cmu.edu
cluster3.technolutions.net
5746569068412928-fe1.pantheonsite.io
ucdc.edu
cluster3.technolutions.net
www.architecture.cmu.edu
wtslocal2.srv.cs.cmu.edu
reporting.as.cmu.edu
csgapp.andrew.cmu.edu
apply.etc.cmu.edu
dvl-vhost-01.andrew.ad.cmu.edu
backend.academy.cs.cmu.edu
qtr-vdi-gtw-p01.qatar.cmu.edu
admission.qatar.cmu.edu
webhost.srv.cs.cmu.edu
cmu.stellic.com
5746569068412928-fe1.pantheonsite.io
innovation.cmu.edu
studentaid.cmu.edu
scsmydb2.andrew.cmu.edu
publishing.andrew.cmu.edu
esx-1.isri.cmu.edu
starrez-test.housing.cmu.edu
portal.cylab.cmu.edu
starrez-test.housing.cmu.edu
clusters2.andrew.cmu.edu
www.cmu.edu
ebstest.andrew.cmu.edu
puzzlehunt.club.cc.cmu.edu
test.eis.uw.edu
www.magazine.tepper.cmu.edu
shibboleth-test.andrew.cmu.edu
privacycert.cs.cmu.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
mbrooks-dev.net.cmu.edu
illiad.library.cmu.edu
cluster3.technolutions.net
nxterra.ucop.edu
resources.ideate.cmu.edu
fractions.cs.cmu.edu
cardinaltetra.coral.cs.cmu.edu
wtslocal1.srv.cs.cmu.edu
5746569068412928-fe1.pantheonsite.io
rohan.andrew.cmu.edu
rich.srv.cs.cmu.edu
cluster2.technolutions.net
scalefunder.net
rubeus.fac.cs.cmu.edu
puzzlehunt.club.cc.cmu.edu
cms-dev4.andrew.cmu.edu
sfunder5cert.net
sc.isri.cmu.edu
ulissigroup.cheme.cmu.edu
pgh-ad-temp.go.ece.cmu.edu
5741830645743616-fe1.pantheonsite.io
tickets.its.cit.cmu.edu
www.hcii.cs.cmu.edu
spiral-web.ece.cmu.edu
www.blogs.earthjustice.org
qatar.webiso.andrew.cmu.edu
stills.andrew.cmu.edu
exchange.soa.cmu.edu
scom.andrew.cmu.edu
memexqa.cs.cmu.edu
clusters.andrew.cmu.edu
5741830645743616-fe1.pantheonsite.io
webdev.colorado.edu
virtual2.unlv.edu
research-pp.stonybrook.edu
tepper-aid.andrew.cmu.edu
architecture.cmu.edu
recruiting.tepper.cmu.edu
kitchingroup.cheme.cmu.edu
hotline.andrew.cmu.edu
garrod.isri.cmu.edu
upenn-it.asc.upenn.edu
ssp.australia.cmu.edu
forms.qatar.cmu.edu
15721.courses.cs.cmu.edu
tls.automattic.com
faculty.ce.cmu.edu
bookstore.web.cmu.edu
apply.tepper.cmu.edu
web.phys.cmu.edu
olr-test.as.cmu.edu
faculty.ce.cmu.edu
gitlab.library.cmu.edu
bd-test.andrew.cmu.edu
Certificate
The complete raw certificate details for resources.ideate.cmu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHvDCCBqSgAwIBAgIRAKdNGCwF8xxc47UOlpy0//4wDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMjIxMDA0MDAwMDAwWhcNMjMxMTA0 MjM1OTU5WjBsMQswCQYDVQQGEwJVUzEVMBMGA1UECBMMUGVubnN5bHZhbmlhMSMw IQYDVQQKExpDYXJuZWdpZSBNZWxsb24gVW5pdmVyc2l0eTEhMB8GA1UEAxMYcmVz b3VyY2VzLmlkZWF0ZS5jbXUuZWR1MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC CgKCAgEAzvN1xaw/hdWh2jkpQd3bY7qPN8km4j1XKk4BPUu/7css65AZ3KFbSCMp j16xcZWkq4gYjPjZQgT2URCR0KCXUc9EYa59JR89WyqlCqXXxcj7sCo1OipuPsE5 mV/JasY00WrQuarGfd8gdhHhh4KxXy3ViHdc/pV1VHtktK9vdxBUk0SZRn8yANCz OaRuRdLU5vLcNbWjqH6HpxkMEuBYEHQ14XhgAUcUVqiZZlC78iVh9x/YZWevVJjM loO/tsBISP6zEf125oDt2FCL+8S9gV50Y/d4dO0Yjo/DjDi0L+VRUZd7ljkhEv8e Lx8wIypnyAu6z4tvhZRPRa7mz7VW9YikqKmCK9HPIyKAjjwPHjGCSCB+ZwZA7D/m qNMNxMRH53kGmBqS5jSD6fAoNu/WkTnv63TuzxdF3uZABCLf0xOep9TeRiDMb0CY 9E2A8WUl8qEtLPbsp3QkbFIlZZJp/8OOgrpUNn3Jo2LShu+AsKpbGgh9Qpi271BQ UltSvSfJi+ZGkUT3pWIVgmaaI9syKhTG242j7T7OBTZjy9+Vgxs+78FMrtJJTcxP zPXsg8T8HLf0YzP+vyKunaRWSlQaKnFrwOKk4SPrqlXoUTsHh3tqODrXoESrQqnV 51CnUAkPNOgQtUTWq+tzhY5Ld6ml4wzoyEb5ue2crCrv4zgGm6kCAwEAAaOCA00w ggNJMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEADOc4MB0GA1UdDgQWBBTc bkA+Ak5Hp44vsm7ZZQNLMAt4dzAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIw ADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwZwYDVR0gBGAwXjBSBgwr BgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6Ly93d3cuaW5jb21tb24u b3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAIBgZngQwBAgIwRAYDVR0f BD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1yc2Eub3JnL0luQ29tbW9u UlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+BggrBgEFBQcwAoYyaHR0 cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNBU2VydmVyQ0FfMi5jcnQw JQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wggF9BgorBgEE AdZ5AgQCBIIBbQSCAWkBZwB2AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr 3IKKAAABg6BlYo0AAAQDAEcwRQIhAL9uSRA3orbiwuW2Y+4LJLokD+oD7vNXZ5th NefmRjvrAiADees6ZjwEPAeReb7Pgq65Fe5PXT6hRszPjjWT8Qe7qQB1AHoyjFTY ty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABg6BlYlwAAAQDAEYwRAIgGPSo r6ygBwvq/rFHY93TwLbQA0o2lqBsKD1OvVlSVkACIHGJfFLq6hwZ8SVbvu8MOFqq fKfmH0LHKEYuF3OPdy7OAHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0G vW4AAAGDoGViHwAABAMARzBFAiEAzfPpjY6vMhqTOYHXKy+BHYLhZH933QgKgCZD L6xurnQCIGNy8ZzjpVHtrGPTiNudtZ9jhgkR61U6Dh/xjZMNnsIkMCMGA1UdEQQc MBqCGHJlc291cmNlcy5pZGVhdGUuY211LmVkdTANBgkqhkiG9w0BAQsFAAOCAQEA ATbuOTpmv6f70r8xqo+GvUC9w5QiOVRLh4f7Q8WwJdukvw3TLn22MPG8e4SGID+O hgfQ2BQFTLs88KVlVPbOBDAOZ5E1H4Da0Dr3qQ4xUHuMroD5J811Ah5sfMqcir4M rbqjcoINMol7/mfObRMxDPFfFFO8xReolAvcWOF4H6pbLRakTlQ01AIjnkEwKu4j UCT1xRdxi2GIpfpgc0MUpf6Dmo3giG2hQjYqmwBMMpFesfqRt8gFW/aYLZiWGpmD c8u8t/lc18D5sVXJ4ZG4e5FdG3jNV5Uqga2mxwPZYtzIWf2K9LcFQrjeGc+F9773 0YdQv34xH1owRJix48I7Xw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzvN1xaw/hdWh2jkpQd3b Y7qPN8km4j1XKk4BPUu/7css65AZ3KFbSCMpj16xcZWkq4gYjPjZQgT2URCR0KCX Uc9EYa59JR89WyqlCqXXxcj7sCo1OipuPsE5mV/JasY00WrQuarGfd8gdhHhh4Kx Xy3ViHdc/pV1VHtktK9vdxBUk0SZRn8yANCzOaRuRdLU5vLcNbWjqH6HpxkMEuBY EHQ14XhgAUcUVqiZZlC78iVh9x/YZWevVJjMloO/tsBISP6zEf125oDt2FCL+8S9 gV50Y/d4dO0Yjo/DjDi0L+VRUZd7ljkhEv8eLx8wIypnyAu6z4tvhZRPRa7mz7VW 9YikqKmCK9HPIyKAjjwPHjGCSCB+ZwZA7D/mqNMNxMRH53kGmBqS5jSD6fAoNu/W kTnv63TuzxdF3uZABCLf0xOep9TeRiDMb0CY9E2A8WUl8qEtLPbsp3QkbFIlZZJp /8OOgrpUNn3Jo2LShu+AsKpbGgh9Qpi271BQUltSvSfJi+ZGkUT3pWIVgmaaI9sy KhTG242j7T7OBTZjy9+Vgxs+78FMrtJJTcxPzPXsg8T8HLf0YzP+vyKunaRWSlQa KnFrwOKk4SPrqlXoUTsHh3tqODrXoESrQqnV51CnUAkPNOgQtUTWq+tzhY5Ld6ml 4wzoyEb5ue2crCrv4zgGm6kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 222381372419899098733096748355985670142 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Carnegie Mellon University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'resources.ideate.cmu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 844286484022208930306064391625464323367662628630254565018997891748344887480021417328347417429043867701988971381639930085147058422133685301364382083959191156894291850013408518245336606477184411556421204641389728299278309402666960127291739916615504971968329274944977749684249075241148723754481467934607259587732426783063449444479198877725434621418213046972946977133628795250089100117566969437937889121384187668971029001721087795896905423792190471435999074589697340340603525572672826520809971994379785934124363237838812102730241671943437127562889367898320781954644445633040323096230396696076780420008703923410149755316585253412105054055363489140114583775612575105444481917735237138251901212489610715062103582821156526782424723087325707898508696675731712746873132949134247873802904912777837998979272619765027328164536721869122340774001928817871982182725618586070609273627595531272294758751649318072425181965021013386270270460427722608384972901040055782894412532365540160289449773275613679625686135611693613080973256752477433029301290971969800238796633052105683081003753077268791155675623165627481585535203203063908429239245719993720662988465185819416225305086714591943325198183757629920339666071015191657735442184231639487357757981891497 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dc6e403e024e47a78e2fb26ed965034b300b7877 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources.ideate.cmu.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000136ee393a66bfa7fbd2bf31aa8f86bd40bdc3942239544b8787fb43c5b025dba4bf0dd32e7db630f1bc7b8486203f8e8607d0d814054cbb3cf0a56554f6ce04300e6791351f80dad03af7a90e31507b8cae80f927cd75021e6c7cca9c8abe0cadbaa372820d32897bfe67ce6d13310cf15f1453bcc517a8940bdc58e1781faa5b2d16a44e5434d402239e41302aee235024f5c517718b6188a5fa60734314a5fe839a8de0886da142362a9b004c32915eb1fa91b7c8055bf6982d98961a998373cbbcb7f95cd7c0f9b155c9e191b87b915d1b78cd57952a81ada6c703d962dcc859fd8af4b70542b8de19cf85f7bef7d18750bf7e311f5a304498b1e3c23b5f