paintrials.unc.edu
- University of North Carolina at Chapel Hill -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 49:5a:0e:3a:25:dd:5e:97:1c:ce:17:c3:ef:02:6b:33 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of North Carolina at Chapel Hill
Organization:
University of North Carolina at Chapel Hill
Organization unit: Chai Core
Organization unit: Chai Core
Address:
153A Country Club Road
Postal code: 27514
State / Province: NC
Locality: Chapel HIll
Country: US
Postal code: 27514
State / Province: NC
Locality: Chapel HIll
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 49:5a:0e:3a:25:dd:5e:97:1c:ce:17:c3:ef:02:6b:33Serial Number (int): 97501238970253434818771143832941783859
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 33:a3:c1:97:a8:a2:42:11:ec:a7:58:f6:d3:c5:59:73:92:eb:6b:67
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 63:74:ca:f8:dd:74:21:f1:d5:5c:85:c8:eb:66:fd:37:ba:2f:49:bf
Fingerprint (sha256): 02:67:06:26:6f:d8:85:98:4a:07:72:9d:c8:da:8c:13:ba:c5:9f:d3:8a:6a:05:68:a7:87:83:69:8a:20:2c:93
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate paintrials.unc.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for paintrials.unc.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
paintrials.unc.edu
Other certificates including the domain name unc.edu
(limited to 100 certificates)
rd-staging.tracs.unc.edu
sogar.oasis.unc.edu
*.sog.unc.edu
janchambers.sites.oasis.unc.edu
medialaw.unc.edu
canons.sog.unc.edu
*.onlinemba.unc.edu
image.20210408.094303.s11.et.yellsatcloud.com
symposium.kenan-flagler.unc.edu
5657535201673216-fe3.pantheonsite.io
gala.ovcsa.unc.edu
dev.infoporte.unc.edu
it.uahs.arizona.edu
ISEMMDCPAN.unch.unc.edu
epid-practicum.sph.unc.edu
ib-ipam2.net.unc.edu
www.makeathon.unc.edu
5635093192245248-fe3.pantheonsite.io
cluster3.technolutions.net
hope.haven.sites.oasis.unc.edu
canons.sog.unc.edu
bootcamp.unc.edu
docimage-iie1.unch.unc.edu
apps.hpdp.unc.edu
tbicenter.unc.edu
advice.unch.unc.edu
stories.unc.edu
ALLSCRIPTSHM-JH.unch.unc.edu
cciprinting.unc.edu
streetfilms.org
blogs.kenan-flagler.unc.edu
theancientway.jomc.unc.edu
nccriminallaw.sog.unc.edu
zachboyd.sites.oasis.unc.edu
gelmore.sites.oasis.unc.edu
compgen.unc.edu
campusrec.unc.edu
*.prospectsandbox.oasis.unc.edu
sslvpn.unch.unc.edu
admin.fpc.unc.edu
caoma.unch.unc.edu
contracts.unc.edu
f5m5.net.unc.edu
5659313586569216-fe4.pantheonsite.io
watsona.sites.oasis.unc.edu
bdv.unch.unc.edu
outlook.unc.edu
k2.shared.global.fastly.net
san-13-s10.tlsprovisioning.exacttarget.com
entsysmon.its.unc.edu
watsona.sites.oasis.unc.edu
itsstatus.unc.edu
nlp-ssl.cs.unc.edu
cluster3.technolutions.net
chancellorsawards.unc.edu
cfk.unc.edu
*.web.unc.edu
fpgservicedesk.ad.unc.edu
epss.unch.unc.edu
cluster2.technolutions.net
advise.alumni.unc.edu
*.fpg.unc.edu
miforms.bioinf.unc.edu
webmail.campus-services.unc.edu
loyola.sites.oasis.unc.edu
emch.sites.oasis.unc.edu
impsci.tracs.unc.edu
gaa.dev.unc.edu
paintrials.unc.edu
adamhochberg.com
epicreport2.unch.unc.edu
p2c.police.unc.edu
itsstatus.unc.edu
applynow.kenan-flagler.unc.edu
apps.fo.unc.edu
5709198289534976-fe4.pantheonsite.io
mobile.uncaa.unc.edu
fms.fammed.unc.edu
dataverse-test.irss.unc.edu
cah.fammed.unc.edu
courses.sph.unc.edu
pml.unc.edu
bomgar.unc.edu
beingthere.cs.unc.edu
*.onlinemph.unc.edu
devservices.unc.edu
portaltest.chs.unc.edu
oisvcse.med.unc.edu
dare-idrac.unlisted.med.unc.edu
san-13-s11.tlsprovisioning.exacttarget.com
unc.edu
carolinawomenlead.unc.edu
emch.sites.oasis.unc.edu
mycarolina.unc.edu
spotsdev.unc.edu
helpme.unch.unc.edu
cryoweb-test.med.unc.edu
kfbs.dev.unc.edu
abl.bme.unc.edu
connect.eship.unc.edu
sogar.oasis.unc.edu
*.sog.unc.edu
janchambers.sites.oasis.unc.edu
medialaw.unc.edu
canons.sog.unc.edu
*.onlinemba.unc.edu
image.20210408.094303.s11.et.yellsatcloud.com
symposium.kenan-flagler.unc.edu
5657535201673216-fe3.pantheonsite.io
gala.ovcsa.unc.edu
dev.infoporte.unc.edu
it.uahs.arizona.edu
ISEMMDCPAN.unch.unc.edu
epid-practicum.sph.unc.edu
ib-ipam2.net.unc.edu
www.makeathon.unc.edu
5635093192245248-fe3.pantheonsite.io
cluster3.technolutions.net
hope.haven.sites.oasis.unc.edu
canons.sog.unc.edu
bootcamp.unc.edu
docimage-iie1.unch.unc.edu
apps.hpdp.unc.edu
tbicenter.unc.edu
advice.unch.unc.edu
stories.unc.edu
ALLSCRIPTSHM-JH.unch.unc.edu
cciprinting.unc.edu
streetfilms.org
blogs.kenan-flagler.unc.edu
theancientway.jomc.unc.edu
nccriminallaw.sog.unc.edu
zachboyd.sites.oasis.unc.edu
gelmore.sites.oasis.unc.edu
compgen.unc.edu
campusrec.unc.edu
*.prospectsandbox.oasis.unc.edu
sslvpn.unch.unc.edu
admin.fpc.unc.edu
caoma.unch.unc.edu
contracts.unc.edu
f5m5.net.unc.edu
5659313586569216-fe4.pantheonsite.io
watsona.sites.oasis.unc.edu
bdv.unch.unc.edu
outlook.unc.edu
k2.shared.global.fastly.net
san-13-s10.tlsprovisioning.exacttarget.com
entsysmon.its.unc.edu
watsona.sites.oasis.unc.edu
itsstatus.unc.edu
nlp-ssl.cs.unc.edu
cluster3.technolutions.net
chancellorsawards.unc.edu
cfk.unc.edu
*.web.unc.edu
fpgservicedesk.ad.unc.edu
epss.unch.unc.edu
cluster2.technolutions.net
advise.alumni.unc.edu
*.fpg.unc.edu
miforms.bioinf.unc.edu
webmail.campus-services.unc.edu
loyola.sites.oasis.unc.edu
emch.sites.oasis.unc.edu
impsci.tracs.unc.edu
gaa.dev.unc.edu
paintrials.unc.edu
adamhochberg.com
epicreport2.unch.unc.edu
p2c.police.unc.edu
itsstatus.unc.edu
applynow.kenan-flagler.unc.edu
apps.fo.unc.edu
5709198289534976-fe4.pantheonsite.io
mobile.uncaa.unc.edu
fms.fammed.unc.edu
dataverse-test.irss.unc.edu
cah.fammed.unc.edu
courses.sph.unc.edu
pml.unc.edu
bomgar.unc.edu
beingthere.cs.unc.edu
*.onlinemph.unc.edu
devservices.unc.edu
portaltest.chs.unc.edu
oisvcse.med.unc.edu
dare-idrac.unlisted.med.unc.edu
san-13-s11.tlsprovisioning.exacttarget.com
unc.edu
carolinawomenlead.unc.edu
emch.sites.oasis.unc.edu
mycarolina.unc.edu
spotsdev.unc.edu
helpme.unch.unc.edu
cryoweb-test.med.unc.edu
kfbs.dev.unc.edu
abl.bme.unc.edu
connect.eship.unc.edu
Certificate
The complete raw certificate details for paintrials.unc.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEjCCBfqgAwIBAgIQSVoOOiXdXpcczhfD7wJrMzANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0xODA2MjcwMDAwMDBaFw0yMDA2MjYy MzU5NTlaMIHIMQswCQYDVQQGEwJVUzEOMAwGA1UEERMFMjc1MTQxCzAJBgNVBAgT Ak5DMRQwEgYDVQQHEwtDaGFwZWwgSElsbDEfMB0GA1UECRMWMTUzQSBDb3VudHJ5 IENsdWIgUm9hZDE0MDIGA1UEChMrVW5pdmVyc2l0eSBvZiBOb3J0aCBDYXJvbGlu YSBhdCBDaGFwZWwgSGlsbDESMBAGA1UECxMJQ2hhaSBDb3JlMRswGQYDVQQDExJw YWludHJpYWxzLnVuYy5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeVCo6IEF1dbarzhTqU2bs3QYTVuY/o0EW421UVC/z5xHkGZjPhNLpxifhKWOD 5LBEQbXgB85t7oyEPLYmIvPsnW6YaaHlFBhc6FlNXygvf89tjICTaNWLEVpZzgCQ 0UFH5gOwsnwjOQfbK8tdJy2Nx4tFrpKZXaCCNT0jHVgLO/dXBx45InTLgGFVjN+q 49C8JD9G5jN0/pbxKAv+oQSeOPXo0SHcq1zGF39wj7CqfTl7w9RZ0667LSQoOFVP eVKeJ94puzEDll1qDcQVyrfzGedU1T+9fTGK0nAvnZBDCBQNI34wqtMgPT10uwBh JFpcX6tq/MrAG6k4y8QH9KVxAgMBAAGjggNHMIIDQzAfBgNVHSMEGDAWgBQeBaN3 j2yW4luHS6a0hqxxAAznODAdBgNVHQ4EFgQUM6PBl6iiQhHsp1j208VZc5Lra2cw DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMGcGA1UdIARgMF4wUgYMKwYBBAGuIwEEAwEBMEIwQAYIKwYB BQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3JlcG9zaXRvcnkv Y3BzX3NzbC5wZGYwCAYGZ4EMAQICMEQGA1UdHwQ9MDswOaA3oDWGM2h0dHA6Ly9j cmwuaW5jb21tb24tcnNhLm9yZy9JbkNvbW1vblJTQVNlcnZlckNBLmNybDB1Bggr BgEFBQcBAQRpMGcwPgYIKwYBBQUHMAKGMmh0dHA6Ly9jcnQudXNlcnRydXN0LmNv bS9JbkNvbW1vblJTQVNlcnZlckNBXzIuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8v b2NzcC51c2VydHJ1c3QuY29tMB0GA1UdEQQWMBSCEnBhaW50cmlhbHMudW5jLmVk dTCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA7ku9t3XOYLrhQmkfq+GeZqMP fl+wctiDAMR7iXqo/csAAAFkQZiJrgAABAMARzBFAiAk6X+FVkgjxFkQn600YRgk TV6MNRdobA9tc4tfwfPVFQIhAPWx5fHKmA307P3g4Obg59YP7SSasYeT4CXxLGh3 c+v+AHUAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFkQZiH8QAA BAMARjBEAiBYq+L5Uf3EwO0YHCwFoeiQyeHXl0EXNMDH39UsBrunbQIgONi+9Q3M 7U93bZ4KzWaP3tVimOGoQFFAb0IWlEQdvD4AdgBVgdTCFpA2AUrqC5tXPFPwwOQ4 eHAlCBcvo6odBxPTDAAAAWRBmIYIAAAEAwBHMEUCIQD+XCTrYRyHiJvRDPhAy+nX 9MImexP1TJGLfOr43GEedgIgARNry4CQhXVoqmvzAJxyeX7PUl5FwIlZAQ0tjqRO Y5kwDQYJKoZIhvcNAQELBQADggEBAFyGHS4EI4Jt+3f9KFMlWa99jFA3ruriKuPx 3Xa1dlRMrREk7UIwI5keREQj/iR9Hz7HyF6547I9mmv/oTShNYx3SzprIYIYYWjE lXLdYLUXDgtg4FA5To+HpG9BneeSh+Z21yGtHCFQ5Exu3Gjz1H9Y+ksSfkAaX+QD B3/6yDOBn/Oodwjs9y6QE7awGE9VVWBbeEb9OytRgcULmMujmoOf7mBmsEZiA/J2 NdbtW1evXOdBaRZF+GvrpgmdzH5IggFN2DhIaASOGrQXS42ipErx7R5hT8P7vdXR N4F2zMzIZCnrFRm6OKw7zW3HW9hPakf23FnV0YRgJbGrwwEXWB0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lQqOiBBdXW2q84U6lNm 7N0GE1bmP6NBFuNtVFQv8+cR5BmYz4TS6cYn4Sljg+SwREG14AfObe6MhDy2JiLz 7J1umGmh5RQYXOhZTV8oL3/PbYyAk2jVixFaWc4AkNFBR+YDsLJ8IzkH2yvLXSct jceLRa6SmV2ggjU9Ix1YCzv3VwceOSJ0y4BhVYzfquPQvCQ/RuYzdP6W8SgL/qEE njj16NEh3Ktcxhd/cI+wqn05e8PUWdOuuy0kKDhVT3lSnifeKbsxA5Zdag3EFcq3 8xnnVNU/vX0xitJwL52QQwgUDSN+MKrTID09dLsAYSRaXF+ravzKwBupOMvEB/Sl cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 97501238970253434818771143832941783859 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '27514' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chapel HIll' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '153A Country Club Road' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of North Carolina at Chapel Hill' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chai Core' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paintrials.unc.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28066406985878664702014119658476333817134668486820554481429065056424785900800138888814486428567818863835537672555974548053031345717704289421557140767280881477291146733216529120945845170235597769588398150379136816980805087470049389678102548893885062689053385419550967096473649212714672213370004154839804634779713720968562830302949250544640212597693498713705114786941587771210480966301369163521762171238685815980011328366063983795343474469747888301294905307135099663511552280334044637322830554450135031140897417750118111309193352820730560743422252414278517054734064190230077232855615539108422067860307171723039590360433 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33a3c197a8a24211eca758f6d3c5597392eb6b67 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paintrials.unc.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN asn1: syntax error: invalid boolean false . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:3|t:22|false] . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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