www.facil.columbia.edu
- Columbia University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 8f:97:1f:09:48:04:6e:23:5b:36:d2:5a:74:05:15:0e was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Columbia University
Organization:
Columbia University
Organization unit: Information Technology
Organization unit: Information Technology
State / Province:
NY
Locality: New York
Country: US
Locality: New York
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 8f:97:1f:09:48:04:6e:23:5b:36:d2:5a:74:05:15:0eSerial Number (int): 190864269712921181150251828970306999566
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: a5:1b:f2:a9:78:50:20:69:39:70:6f:67:bb:5b:9d:4c:07:ca:a8:4a
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 8e:ac:4a:55:d1:ed:a1:28:c8:bc:9d:19:bc:bb:bf:c9:17:cc:e9:fc
Fingerprint (sha256): 02:98:b3:9d:1f:8d:e1:09:37:72:31:8c:34:86:e7:4e:b6:b5:90:0c:3f:c5:f9:b8:bb:b3:61:87:dd:af:5d:81
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate www.facil.columbia.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.facil.columbia.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.facil.columbia.edu
Other certificates including the domain name columbia.edu
(limited to 100 certificates)
coursewebs.law.columbia.edu
mcftp.mc.cumc.columbia.edu
diamond.law.columbia.edu
classics.columbia.edu
tsividis.ee.columbia.edu
frontend.sisfrontend-uat.sis-r53.cuit.columbia.edu
povertycenter.columbia.edu
invest-serv2.ooi.columbia.edu
test-web-lws.edu.help
exprodmail01.cuit.columbia.edu
ssl.procurement.columbia.edu
nursingvolunteer.givingday.columbia.edu
*.hr.columbia.edu
5697124062724096-fe2.pantheonsite.io
us.prod.campusgroups.com
unleashing.tc.columbia.edu
www.mailman.columbia.edu
secure5bb5ec4d4764e8eaa9667dce.nationbuilder.com
wikischolars.columbia.edu
incapsula.com
nano.columbia.edu
emeritus.gsb.columbia.edu
courseworks2.columbia.edu
admissions.emeritus.org
video.engineering.columbia.edu
cluster3.technolutions.net
aspirerefugees.columbia.edu
cluster.technolutions.net
cluster3.technolutions.net
globalreports.columbia.edu
wwws-db.law.columbia.edu
us.prod.campusgroups.com
5691420614590464-fe3.pantheonsite.io
califano.c2b2.columbia.edu
dev.cumc.columbia.edu
amploadvance.com
www.icap.columbia.edu
icccr.tc.columbia.edu
guestaccess.law.columbia.edu
giving.columbia.edu
www.incite.columbia.edu
ad01.gsb.columbia.edu
thelowdown.alumni.columbia.edu
mail.biology.columbia.edu
*.isso.columbia.edu
digitaltutorials.jrn.columbia.edu
pawprtprodmprt1.cuit.columbia.edu
incapsula.com
5727389891952640-fe2.pantheonsite.io
columbia.edu
pawprtprodprt02.adcu.columbia.edu
stat.columbia.edu
palestine.mei.columbia.edu
m.lawnet.law.columbia.edu
abate-shen.cumc.columbia.edu
jira.columbia.edu
incite.columbia.edu
portal.neuro.columbia.edu
idmapp.cc.columbia.edu
incapsula.com
haywire.college.columbia.edu
sustainability.ei.columbia.edu
lockers-dev.paas.cc.columbia.edu
connect.woodstockacademy.org
indianeconomy.columbia.edu
ias-drupal6-test.cc.columbia.edu
mail-in.cc.columbia.edu
beisdev1.tc.columbia.edu
www.design-engineering.princeton.edu
5753050442498048-fe1.pantheonsite.io
tls.automattic.com
chagall.tc.columbia.edu
prod.25.slot.cdn.salesforce-communities.com
5691420614590464-fe3.pantheonsite.io
act.dbmi.columbia.edu
www.cser.columbia.edu
5703702744662016-fe4.pantheonsite.io
soc.cs.columbia.edu
sni.cloudflaressl.com
amploadvance.com
sslvs03.igloosoftware.com
cluster3.technolutions.net
sustainability.ei.columbia.edu
stat.columbia.edu
library.columbia.edu
pistars1.cpmc.columbia.edu
nxterra.ucop.edu
portal.studenthealth.cuimc.columbia.edu
cice-dev.paas.cc.columbia.edu
www.ffworkshop.columbia.edu
shoreline.ncdp.columbia.edu
dev-gfs2.api.columbia.edu
hudson.jrn.columbia.edu
enhants.ee.columbia.edu
p-ctx-dc-02.mc.cumc.columbia.edu
admissions.nursing.columbia.edu
realrisks.dbmi.columbia.edu
*.gsas.columbia.edu
cluster2.technolutions.net
www.make.columbia.edu
mcftp.mc.cumc.columbia.edu
diamond.law.columbia.edu
classics.columbia.edu
tsividis.ee.columbia.edu
frontend.sisfrontend-uat.sis-r53.cuit.columbia.edu
povertycenter.columbia.edu
invest-serv2.ooi.columbia.edu
test-web-lws.edu.help
exprodmail01.cuit.columbia.edu
ssl.procurement.columbia.edu
nursingvolunteer.givingday.columbia.edu
*.hr.columbia.edu
5697124062724096-fe2.pantheonsite.io
us.prod.campusgroups.com
unleashing.tc.columbia.edu
www.mailman.columbia.edu
secure5bb5ec4d4764e8eaa9667dce.nationbuilder.com
wikischolars.columbia.edu
incapsula.com
nano.columbia.edu
emeritus.gsb.columbia.edu
courseworks2.columbia.edu
admissions.emeritus.org
video.engineering.columbia.edu
cluster3.technolutions.net
aspirerefugees.columbia.edu
cluster.technolutions.net
cluster3.technolutions.net
globalreports.columbia.edu
wwws-db.law.columbia.edu
us.prod.campusgroups.com
5691420614590464-fe3.pantheonsite.io
califano.c2b2.columbia.edu
dev.cumc.columbia.edu
amploadvance.com
www.icap.columbia.edu
icccr.tc.columbia.edu
guestaccess.law.columbia.edu
giving.columbia.edu
www.incite.columbia.edu
ad01.gsb.columbia.edu
thelowdown.alumni.columbia.edu
mail.biology.columbia.edu
*.isso.columbia.edu
digitaltutorials.jrn.columbia.edu
pawprtprodmprt1.cuit.columbia.edu
incapsula.com
5727389891952640-fe2.pantheonsite.io
columbia.edu
pawprtprodprt02.adcu.columbia.edu
stat.columbia.edu
palestine.mei.columbia.edu
m.lawnet.law.columbia.edu
abate-shen.cumc.columbia.edu
jira.columbia.edu
incite.columbia.edu
portal.neuro.columbia.edu
idmapp.cc.columbia.edu
incapsula.com
haywire.college.columbia.edu
sustainability.ei.columbia.edu
lockers-dev.paas.cc.columbia.edu
connect.woodstockacademy.org
indianeconomy.columbia.edu
ias-drupal6-test.cc.columbia.edu
mail-in.cc.columbia.edu
beisdev1.tc.columbia.edu
www.design-engineering.princeton.edu
5753050442498048-fe1.pantheonsite.io
tls.automattic.com
chagall.tc.columbia.edu
prod.25.slot.cdn.salesforce-communities.com
5691420614590464-fe3.pantheonsite.io
act.dbmi.columbia.edu
www.cser.columbia.edu
5703702744662016-fe4.pantheonsite.io
soc.cs.columbia.edu
sni.cloudflaressl.com
amploadvance.com
sslvs03.igloosoftware.com
cluster3.technolutions.net
sustainability.ei.columbia.edu
stat.columbia.edu
library.columbia.edu
pistars1.cpmc.columbia.edu
nxterra.ucop.edu
portal.studenthealth.cuimc.columbia.edu
cice-dev.paas.cc.columbia.edu
www.ffworkshop.columbia.edu
shoreline.ncdp.columbia.edu
dev-gfs2.api.columbia.edu
hudson.jrn.columbia.edu
enhants.ee.columbia.edu
p-ctx-dc-02.mc.cumc.columbia.edu
admissions.nursing.columbia.edu
realrisks.dbmi.columbia.edu
*.gsas.columbia.edu
cluster2.technolutions.net
www.make.columbia.edu
Certificate
The complete raw certificate details for www.facil.columbia.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgIRAI+XHwlIBG4jWzbSWnQFFQ4wDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTUxMjI4MDAwMDAwWhcNMTcxMjI3 MjM1OTU5WjCBjTELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk5ZMREwDwYDVQQHEwhO ZXcgWW9yazEcMBoGA1UEChMTQ29sdW1iaWEgVW5pdmVyc2l0eTEfMB0GA1UECxMW SW5mb3JtYXRpb24gVGVjaG5vbG9neTEfMB0GA1UEAxMWd3d3LmZhY2lsLmNvbHVt YmlhLmVkdTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALoSouTON4yX j2IhJxUB2pBHoW5xwwMAzJB4eI2Dk3vl7ktjQbL+b87TjIq0gPdGVzT5bOTg4t0Q BatrMkpKh5f3s8VUrQPla9xGRQRRD+k9W7/AE3RlQ4qrrBLlUjrfbs3ipCXVxmJd W/PIfz5RbBbV2A4OOKPB2Fc5co1PVnFKpc5B0vJIXPctv/+D3qkdcfnX7aF9dAP7 9UX3jQFZNg0uPdJTUfPMbWkED1RxYdp3kLMVC3w3pb6ChY0Dh07R1GVBwFtQT4lM 0K/SrNPHoptGBJtidVBbnewMUytVnL1EPO7oPXd9wah1LY+Ix49FZR40ico3bI8F a9MzHQLIWYQP2kZZdTfx4itwrHLdT+wydJmM+7Muxyzg1rvxQTjJgfVDgfcLquJN Acc7Cbe2sLUkMi/hfcmqTaI3/ApUKHNSZpx3Sg+/RuPG0q209hTbPvjQTPPjAwi5 w5FM+uT+jxY+0jquBKicmGdqRoNuJUXtrI8RyLRXGd1wfjySORGfrvoRCDETtHzg tMzY68DzUDoO9o7nHwcQlqmO6StcLB126ck7x+wa7TlwC7HxblvN1U3mEpEeIBpe Wb9o3Mva4zXuqNL4S+s8oJeNjNbfU9vr9Zyv7YqxHukucw5d/6XZlXtiQqtmyXVK 8is5mgj5qahJ7n4nySCjqdDMKv5NmyLDAgMBAAGjggHKMIIBxjAfBgNVHSMEGDAW gBQeBaN3j2yW4luHS6a0hqxxAAznODAdBgNVHQ4EFgQUpRvyqXhQIGk5cG9nu1ud TAfKqEowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMGcGA1UdIARgMF4wUgYMKwYBBAGuIwEEAwEBMEIw QAYIKwYBBQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3JlcG9z aXRvcnkvY3BzX3NzbC5wZGYwCAYGZ4EMAQICMEQGA1UdHwQ9MDswOaA3oDWGM2h0 dHA6Ly9jcmwuaW5jb21tb24tcnNhLm9yZy9JbkNvbW1vblJTQVNlcnZlckNBLmNy bDB1BggrBgEFBQcBAQRpMGcwPgYIKwYBBQUHMAKGMmh0dHA6Ly9jcnQudXNlcnRy dXN0LmNvbS9JbkNvbW1vblJTQVNlcnZlckNBXzIuY3J0MCUGCCsGAQUFBzABhhlo dHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMCEGA1UdEQQaMBiCFnd3dy5mYWNpbC5j b2x1bWJpYS5lZHUwDQYJKoZIhvcNAQELBQADggEBAEPhMb0SgjedgEGAl81LNfZU duH1Md6EYtsGRpt5Op/Izt6BDIpWUr2RyJszDPKpcZOFfAWLEfbuFFhlPgDw1l4g IX8u5p7ID0Y5WDfTASOM5x4div6I+Jq8WLyTC3lBXtq/nbh3zouuMglbyDIMh1bK qzGwHPrka5docuNLefb1QkpijG9ETHeaLObwFmRcfGmBCWw9a01Juor0jQo2vlAU utV5Yut0bE3frkWOgckalD6ClbFUT4CBIl3wdtuR9UTC06U9pI2QaBhe+aQVShx2 jBrNpOvWZOH7tlyVygvtahXCiJVf6nOmyfJpUH2AHovg7fYoLMQJtKoKbWrTZDA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuhKi5M43jJePYiEnFQHa kEehbnHDAwDMkHh4jYOTe+XuS2NBsv5vztOMirSA90ZXNPls5ODi3RAFq2sySkqH l/ezxVStA+Vr3EZFBFEP6T1bv8ATdGVDiqusEuVSOt9uzeKkJdXGYl1b88h/PlFs FtXYDg44o8HYVzlyjU9WcUqlzkHS8khc9y2//4PeqR1x+dftoX10A/v1RfeNAVk2 DS490lNR88xtaQQPVHFh2neQsxULfDelvoKFjQOHTtHUZUHAW1BPiUzQr9Ks08ei m0YEm2J1UFud7AxTK1WcvUQ87ug9d33BqHUtj4jHj0VlHjSJyjdsjwVr0zMdAshZ hA/aRll1N/HiK3Csct1P7DJ0mYz7sy7HLODWu/FBOMmB9UOB9wuq4k0BxzsJt7aw tSQyL+F9yapNojf8ClQoc1JmnHdKD79G48bSrbT2FNs++NBM8+MDCLnDkUz65P6P Fj7SOq4EqJyYZ2pGg24lRe2sjxHItFcZ3XB+PJI5EZ+u+hEIMRO0fOC0zNjrwPNQ Og72jucfBxCWqY7pK1wsHXbpyTvH7BrtOXALsfFuW83VTeYSkR4gGl5Zv2jcy9rj Ne6o0vhL6zygl42M1t9T2+v1nK/tirEe6S5zDl3/pdmVe2JCq2bJdUryKzmaCPmp qEnufifJIKOp0Mwq/k2bIsMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 190864269712921181150251828970306999566 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Columbia University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.facil.columbia.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 759110786832324519810774129586161128434149449363940667808438584912855176080361282047912798600028812231146862608962928242513523490444051855651482571260927092301669663888214473608623800862569025121952804593788443405680489947893610953955964624616831361315824396188924948578723203063682660361633343376134462555859545561920735922571492266421280024540735703656337964136320936891320595827533414364113290764980315711074013362759584864101506694647637672398301587927785094204893823025602931210783277638428897584643125727063553681629972604256077614217473321877231279553033132633856720404098909660567920067876732416146199353820224229571158605684506595699968094689865983576572693186799049576949893765287703775203133356538320398074989812223618749212610198675604627681300382531586035886881362102907116190170899295026664605772726543423759477968091245150257193322778586225128563853374573598010956628480012836054477440359096620095496244031859799024291698417662339156591994311287814752619574784895747542003886512465535582334144999469016908469186687086663806555604809567780011874980262541434076073359293182070001549730965331015244508833187441112234027994417632701490979074106529454904556103110710362768227204114488509634597076128355993601935327188689603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a51bf2a97850206939706f67bb5b9d4c07caa84a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.facil.columbia.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0043e131bd1282379d80418097cd4b35f65476e1f531de8462db06469b793a9fc8cede810c8a5652bd91c89b330cf2a97193857c058b11f6ee1458653e00f0d65e20217f2ee69ec80f46395837d301238ce71e1d8afe88f89abc58bc930b79415edabf9db877ce8bae32095bc8320c8756caab31b01cfae46b976872e34b79f6f5424a628c6f444c779a2ce6f016645c7c6981096c3d6b4d49ba8af48d0a36be5014bad57962eb746c4ddfae458e81c91a943e8295b1544f8081225df076db91f544c2d3a53da48d9068185ef9a4154a1c768c1acda4ebd664e1fbb65c95ca0bed6a15c288955fea73a6c9f269507d801e8be0edf6282cc409b4aa0a6d6ad36430