adfs-web-aws-1.ad.uci.edu

- University of California, Irvine -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 69:83:e9:82:86:e4:6f:d1:26:14:f1:9c:76:31:a1:bc was issued on by Internet2.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of California, Irvine

Organization: University of California, Irvine
State / Province: California
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 69:83:e9:82:86:e4:6f:d1:26:14:f1:9c:76:31:a1:bc
Serial Number (int): 140253866588730161211535471542971507132
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: b0:8b:9f:66:e2:7a:8d:6d:19:9e:b1:b6:fa:0b:de:19:b7:a3:49:4d
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 31:f5:81:98:47:f6:77:7d:13:12:20:06:04:d4:50:a2:8a:22:89:32
Fingerprint (sha256): 02:4b:c4:89:b6:f9:64:5c:45:34:1b:bc:1f:9a:49:4d:a6:c0:ef:42:19:d4:31:96:fa:2e:40:52:61:67:6d:1d

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate adfs-web-aws-1.ad.uci.edu

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for adfs-web-aws-1.ad.uci.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

adfs-web-aws-1.ad.uci.edu
adfs.ad.uci.edu

Other certificates including the domain name uci.edu

(limited to 100 certificates)
lgbtrc.uci.edu
aegep.bio.uci.edu
antnet.uci.edu
fieldstudy.soceco.uci.edu
us.prod.campusgroups.com
zm-app-p-1.ad.uci.edu
www.startupguide.innovation.uci.edu
sites.uci.edu
prod.2.slot.cdn.salesforce-communities.com
cluster3.technolutions.net
asap.ap.uci.edu
cluster3.technolutions.net
fibre-data.rgs.uci.edu
us.prod.campusgroups.com
www.socsci.uci.edu
analytics.eee.uci.edu
dipper.sa.uci.edu
mobility.hs.uci.edu
commencement.uci.edu
bai.ess.uci.edu
corporate.ce.uci.edu
webmail.ss.uci.edu
fundopp.uci.edu
status.oit.uci.edu
ds3000.hs.uci.edu
5709068098338816-fe3.pantheonsite.io
ldap1.ics.uci.edu
apply.admissions.uci.edu
stage-web.due.uci.edu
www.mwoodlab.bio.uci.edu
webauth-staging.service.uci.edu
basicneeds.uci.edu
ece.uci.edu
hpc3.rcic.uci.edu
cluster3.technolutions.net
www.circ.eng.uci.edu
5709068098338816-fe3.pantheonsite.io
prod.2.slot.cdn.salesforce-communities.com
myaccount.hs.uci.edu
pmalab.hsis.uci.edu
adfs-web-cpl1.ad.uci.edu
prod.1.slot.cdn.salesforce-communities.com
osh.chs.uci.edu
web.athletics.uci.edu
dce-panorama.ad.uci.edu
adfs-web-aws-1.ad.uci.edu
ldap1.ics.uci.edu
studentcenter.uci.edu
styleguide.innovation.uci.edu
us.prod.campusgroups.com
mpp.soceco.uci.edu
tssg.hs.uci.edu
maillists.nac.uci.edu
trademarks.uci.edu
studentleadership.uci.edu
sba.lawnet.uci.edu
www.internationalstudies.socsci.uci.edu
connectedlearning.uci.edu
cls-p-k1.oit.uci.edu
applications.oit.uci.edu
www.imca.uci.edu
sites0.bio.uci.edu
www.ics.uci.edu
www.startupguide.innovation.uci.edu
caidm.som.uci.edu
airwatch02.hs.uci.edu
keys.arts.uci.edu
tls.automattic.com
vote.elections.uci.edu
eec.hr.uci.edu
libguides.law.uci.edu
www.fs.uci.edu
webster.reg.uci.edu
webmail.uci.edu
cascade.content.uci.edu
fred.es.uci.edu
www.blockchain.uci.edu
ovariancancer.uci.edu
cluster3.technolutions.net
esb-ucp.aws.uci.edu
ci-redcap.hs.uci.edu
logictimeline.com
esb-dev-ucp.aws.uci.edu
ags.uci.edu
video.ath.uci.edu
resnet-cca1-arc.reshsg.uci.edu
mammag.uci.edu
mail.uciorthopaedics.com
public.ha.uci.edu
oir-admin-pri.ucinet.uci.edu
web.offcampuspartners.com
cpep.uci.edu
cpep.uci.edu
access.hs.uci.edu
welcomeweek.uci.edu
it.dos.uci.edu
*.ics.uci.edu
cpw.ece.uci.edu
kualidocs.oit.uci.edu
taha.eng.uci.edu

Certificate

The complete raw certificate details for adfs-web-aws-1.ad.uci.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnM7/bSPmukHqtehXBypk
7bC8K8UX+MPb7Q15OIKgGd7Wl/BHrIAFAqwjlZRoXhUzbsYX118UqhPZR7/dULv+
VGpXwVU05uWDaB/YWi+VkkNFBiV9aDU8udnO7b92Anu1jm97y3VDVs2oxpTq6YI6
8t7s2g3s9xNQn6RFz4RgNvn09JNumC1S7+h5zAeZTMq69s4WBrJSYZFABCJtw10S
nP2TFtVYh6zy4urN0FARebjOBVbXX04Thv+EImJWhi4ugOw04zNegc2ifLnVJYbA
bi7BYYBt36AdOV3JxWeh5uqm+hGzEHI/OLgtQnk3iXRULifegtXcHBoq+H+5apNa
0QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 140253866588730161211535471542971507132
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-06 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of California, Irvine'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'adfs-web-aws-1.ad.uci.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19795249974081278972526008614646926668213868852993585209246543809627113554373341037385642916262289979239813598060564675715221490784184381063400975861854463398954263818317864118574243171941865563207927989622647070774316707893224055898998055628338815581372114374365924638022187761030297996664227355266600557165972598147479513168235810976813331396101260171915064469466503269995386178753379348936757257763789447229733648402440214879711672665128740851595716644607720763369481125978168968230160877808108258585336533826477685924390787754211257460770401297559089657436847219405260706862508996435872429096383217895024052361937
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b08b9f66e27a8d6d199eb1b6fa0bde19b7a3494d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							016700760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a7400000184e9cca4d80000040300473045022100a53cf8267e194e915339861d63f910414a7da109f30a2ad28a915772aa3c22e20220393c815f34540a39a0b6936eeceeeeba639a9f035889990c7adc81347bc8e0e50077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad41700000184e9cca4710000040300483046022100eeab48a67e353162453b5db237b6fafc55876e6a2c112d29fb56985db461de87022100ba11ac6ab4281fd7568c3d14392f1f0d22a9ddb3166cfea107222b1dea74ed3e007400eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000184e9cca473000004030045304302203b4874f561e4d20afb8f749141e0f6b9c001e49eeb1120e7184bef3cc72bcc60021f3ff5628584859c859aeb05265060693091f23153fd8c7960563119d46e3c5f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfs-web-aws-1.ad.uci.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfs.ad.uci.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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