klab.ci.uchicago.edu
- University of Chicago -
Issued by InCommon Server CA
About this certificate
This digital certificate with serial number 68:6f:e9:05:12:70:6e:ee:d9:3d:9d:d5:7d:ca:0e:0e was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Chicago
Organization:
University of Chicago
Organization unit: Computation Institute
Organization unit: Computation Institute
Address:
5735 South Ellis Avenue
Postal code: 60637
State / Province: IL
Locality: Chicago
Country: US
Postal code: 60637
State / Province: IL
Locality: Chicago
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 68:6f:e9:05:12:70:6e:ee:d9:3d:9d:d5:7d:ca:0e:0eSerial Number (int): 138820782716213733794166383367502302734
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 36:07:0d:ab:4c:9a:bf:a0:fc:e6:21:45:09:ba:09:02:63:6d:00:ab
AuthorityKeyId: 48:4f:5a:fa:2f:4a:9a:5e:e0:50:f3:6b:7b:55:a5:de:f5:be:34:5d
Fingerprint (sha1): a2:33:ab:98:61:0c:ea:83:ae:06:90:dd:71:89:09:cc:46:b8:44:72
Fingerprint (sha256): 02:f1:b8:b4:a1:35:c9:88:a2:27:d3:04:ab:48:e8:44:b8:18:bd:86:d7:4a:33:51:81:72:44:ab:7c:f8:49:93
Issuing Certificate URL: http://cert.incommon.org/InCommonServerCA.crt
Revocation information
OCSP Server: http://ocsp.incommon.orgCRL Distribution Point: http://crl.incommon.org/InCommonServerCA.crl
Check the revocation status for certificate klab.ci.uchicago.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for klab.ci.uchicago.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
klab.ci.uchicago.edu
Other certificates including the domain name uchicago.edu
(limited to 100 certificates)
iic.uchicago.edu
online.professional.uchicago.edu
paretosolutions.uchicago.edu
www.alemsegedlab.uchicago.edu
cdis.uchicago.edu
5695872079757312-fe3.pantheonsite.io
5690145009303552-fe2.pantheonsite.io
www.dickinsonlab.uchicago.edu
biotime.uchicago.edu
accredible.tutor.com
cobeylab.uchicago.edu
cmb-s4.org
statuspage.io
artflx.uchicago.edu
hbpl.uchicago.edu
5695872079757312-fe3.pantheonsite.io
*.uchicago.edu
cri-kaaiismtp2.cri.uchicago.edu
stagingcatalog.uchicago.edu
cluster.technolutions.net
mirabeau.lib.uchicago.edu
uchicago-main.edge.bluestate.digital
5681717746597888-fe4.pantheonsite.io
loop.lib.uchicago.edu
isa.uchicago.edu
uofcsurveylab.uchicago.edu
sw.src.uchicago.edu
5690145009303552-fe2.pantheonsite.io
amploadvance.com
tls.automattic.com
aonhrlearningcenter.credentials.aon.com
www.cef.uchicago.edu
mh.uchicago.edu
www.ec.uchicago.edu
statuspage.io
grahamschoolinfo.uchicago.edu
incapsula.com
statuspage.io
chicagounbound.uchicago.edu
donatetocancer.uchicago.edu
ucwn.uchicago.edu
5695872079757312-fe3.pantheonsite.io
akamai-san108.exacttarget.com
clelandchat.uchicago.edu
smlnj.org
wg-gleacher.uchicago.edu
erairb-prod.uchicago.edu
academy-achievements.gong.io
www.mychoice.uchicago.edu
simswuat23.uchicago.edu
5764640680181760-fe4.pantheonsite.io
player.cs.uchicago.edu
rsna.staging.rcc.uchicago.edu
pyrite.lib.uchicago.edu
gargantua.lib.uchicago.edu
uei-dviz.uchicago.edu
1155-vcenter.uchicago.edu
ability.uchicago.edu
achieve.escoffier.edu
ul-rdg1.ad.uchicago.edu
reserve.staging.chicagobooth.edu
joyeuse.uchicago.edu
athletics.uchicago.edu
myaccount.uchicago.edu
hosted-ce29.grid.uchicago.edu
lists.ci.uchicago.edu
cri-ksqlinsd2.cri.uchicago.edu
minuet.cs.uchicago.edu
www.cdis.uchicago.edu
apply-harris.uchicago.edu
statuspage.io
spt.uchicago.edu
gev.uchicago.edu
whypolicy.uchicago.edu
cobeylab.uchicago.edu
blueprint.uchicago.edu
parkwait.uchicago.edu
academy-achievements.gong.io
www.urban.uchicago.edu
hbpl.uchicago.edu
tls.automattic.com
ulysses.uchicago.edu
tbc.uchicago.edu
cobeylab.uchicago.edu
encyclopedie.uchicago.edu
cobeylab.uchicago.edu
mpcs-courses.cs.uchicago.edu
webchat.uchicago.edu
www.placelab.uchicago.edu
eggplant.uchicago.edu
lbcnet.uchicago.edu
klab.ci.uchicago.edu
jupyterhub.grid.uchicago.edu
guides.lib.uchicago.edu
stream2.uchicago.edu
www-dev.cs.uchicago.edu
cluster.technolutions.net
rdmi.uchicago.edu
dvlf.uchicago.edu
mpml.uchicago.edu
online.professional.uchicago.edu
paretosolutions.uchicago.edu
www.alemsegedlab.uchicago.edu
cdis.uchicago.edu
5695872079757312-fe3.pantheonsite.io
5690145009303552-fe2.pantheonsite.io
www.dickinsonlab.uchicago.edu
biotime.uchicago.edu
accredible.tutor.com
cobeylab.uchicago.edu
cmb-s4.org
statuspage.io
artflx.uchicago.edu
hbpl.uchicago.edu
5695872079757312-fe3.pantheonsite.io
*.uchicago.edu
cri-kaaiismtp2.cri.uchicago.edu
stagingcatalog.uchicago.edu
cluster.technolutions.net
mirabeau.lib.uchicago.edu
uchicago-main.edge.bluestate.digital
5681717746597888-fe4.pantheonsite.io
loop.lib.uchicago.edu
isa.uchicago.edu
uofcsurveylab.uchicago.edu
sw.src.uchicago.edu
5690145009303552-fe2.pantheonsite.io
amploadvance.com
tls.automattic.com
aonhrlearningcenter.credentials.aon.com
www.cef.uchicago.edu
mh.uchicago.edu
www.ec.uchicago.edu
statuspage.io
grahamschoolinfo.uchicago.edu
incapsula.com
statuspage.io
chicagounbound.uchicago.edu
donatetocancer.uchicago.edu
ucwn.uchicago.edu
5695872079757312-fe3.pantheonsite.io
akamai-san108.exacttarget.com
clelandchat.uchicago.edu
smlnj.org
wg-gleacher.uchicago.edu
erairb-prod.uchicago.edu
academy-achievements.gong.io
www.mychoice.uchicago.edu
simswuat23.uchicago.edu
5764640680181760-fe4.pantheonsite.io
player.cs.uchicago.edu
rsna.staging.rcc.uchicago.edu
pyrite.lib.uchicago.edu
gargantua.lib.uchicago.edu
uei-dviz.uchicago.edu
1155-vcenter.uchicago.edu
ability.uchicago.edu
achieve.escoffier.edu
ul-rdg1.ad.uchicago.edu
reserve.staging.chicagobooth.edu
joyeuse.uchicago.edu
athletics.uchicago.edu
myaccount.uchicago.edu
hosted-ce29.grid.uchicago.edu
lists.ci.uchicago.edu
cri-ksqlinsd2.cri.uchicago.edu
minuet.cs.uchicago.edu
www.cdis.uchicago.edu
apply-harris.uchicago.edu
statuspage.io
spt.uchicago.edu
gev.uchicago.edu
whypolicy.uchicago.edu
cobeylab.uchicago.edu
blueprint.uchicago.edu
parkwait.uchicago.edu
academy-achievements.gong.io
www.urban.uchicago.edu
hbpl.uchicago.edu
tls.automattic.com
ulysses.uchicago.edu
tbc.uchicago.edu
cobeylab.uchicago.edu
encyclopedie.uchicago.edu
cobeylab.uchicago.edu
mpcs-courses.cs.uchicago.edu
webchat.uchicago.edu
www.placelab.uchicago.edu
eggplant.uchicago.edu
lbcnet.uchicago.edu
klab.ci.uchicago.edu
jupyterhub.grid.uchicago.edu
guides.lib.uchicago.edu
stream2.uchicago.edu
www-dev.cs.uchicago.edu
cluster.technolutions.net
rdmi.uchicago.edu
dvlf.uchicago.edu
mpml.uchicago.edu
Certificate
The complete raw certificate details for klab.ci.uchicago.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIQaG/pBRJwbu7ZPZ3VfcoODjANBgkqhkiG9w0BAQUFADBR MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNv bW1vbjEbMBkGA1UEAxMSSW5Db21tb24gU2VydmVyIENBMB4XDTEzMDgxNDAwMDAw MFoXDTE2MDcxNDIzNTk1OVowgb0xCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwU2MDYz NzELMAkGA1UECBMCSUwxEDAOBgNVBAcTB0NoaWNhZ28xIDAeBgNVBAkTFzU3MzUg U291dGggRWxsaXMgQXZlbnVlMR4wHAYDVQQKExVVbml2ZXJzaXR5IG9mIENoaWNh Z28xHjAcBgNVBAsTFUNvbXB1dGF0aW9uIEluc3RpdHV0ZTEdMBsGA1UEAxMUa2xh Yi5jaS51Y2hpY2Fnby5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgti+kuP1a1jOFlQwNn5DXHBlAcj6oZoCSKAMFIPZSxerbT0CoDhhjJAVLQBij 35yfq8ASquVcJ7D6rh6Rjsja+/RjfJImdJsU3foDgIt+2+8lK8hq1H/jxpqrkRAw DP/PrUfoH0slBEUStDLaAPps13h8DdN0F2ndN5zpoT+wH3EKiXa4p+c/fjslrHhB OnTABsgtAOeil65r1oXu8VEm9jLm30r10/OX5bljHMYypOMyDtbdO/cGInFWu04z s4E/GzshlipnXKD3mr6kWND1yjjA5nG1wTiG7dbxKSxOuzr32qKrwIJ6++ygLzld zOujhmdBT4iCiQRGq6K1BV9TAgMBAAGjggG7MIIBtzAfBgNVHSMEGDAWgBRIT1r6 L0qaXuBQ82t7VaXe9b40XTAdBgNVHQ4EFgQUNgcNq0yav6D85iFFCboJAmNtAKsw DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMGcGA1UdIARgMF4wUgYMKwYBBAGuIwEEAwEBMEIwQAYIKwYB BQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3JlcG9zaXRvcnkv Y3BzX3NzbC5wZGYwCAYGZ4EMAQICMD0GA1UdHwQ2MDQwMqAwoC6GLGh0dHA6Ly9j cmwuaW5jb21tb24ub3JnL0luQ29tbW9uU2VydmVyQ0EuY3JsMG8GCCsGAQUFBwEB BGMwYTA5BggrBgEFBQcwAoYtaHR0cDovL2NlcnQuaW5jb21tb24ub3JnL0luQ29t bW9uU2VydmVyQ0EuY3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5pbmNvbW1v bi5vcmcwHwYDVR0RBBgwFoIUa2xhYi5jaS51Y2hpY2Fnby5lZHUwDQYJKoZIhvcN AQEFBQADggEBAE+MqzlVk0R+Id11cGpB0XQZ+xxBB64u2JCr7oCZmFrWbMRyVoap uAjiMMiQ1xSHlwZkAerjKNQGcd5jUV3mt3pc6VaULezhd31S0WRDuW+WEmmytL2q y7eA5UxXTY/oQzk4iIC7prfgL+6EjeNqj2lOPCsGrpK5moC66nswTXy2iKFLiQLD DkZL4qNcMoqYYPTLca6wypscZf+WeltL1qyDQ3xTByF3XLzznkF4sXS+EODPn3M3 gNBJiVtek4S+rQSDNOvh4yLdL3zOSterdX0DL+WZ54vWORDMb4a422OasngCt9u+ ClUemKfxeA4d92VTZgrwNCQb8op8lQerpoM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4LYvpLj9WtYzhZUMDZ+Q 1xwZQHI+qGaAkigDBSD2UsXq209AqA4YYyQFS0AYo9+cn6vAEqrlXCew+q4ekY7I 2vv0Y3ySJnSbFN36A4CLftvvJSvIatR/48aaq5EQMAz/z61H6B9LJQRFErQy2gD6 bNd4fA3TdBdp3Tec6aE/sB9xCol2uKfnP347Jax4QTp0wAbILQDnopeua9aF7vFR JvYy5t9K9dPzl+W5YxzGMqTjMg7W3Tv3BiJxVrtOM7OBPxs7IZYqZ1yg95q+pFjQ 9co4wOZxtcE4hu3W8SksTrs699qiq8CCevvsoC85Xczro4ZnQU+IgokERquitQVf UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 138820782716213733794166383367502302734 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-08-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '60637' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '5735 South Ellis Avenue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Computation Institute' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'klab.ci.uchicago.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28367219630223384166662368959976327556995301077238318568613896953541889991775849662861639948284395769567398512577576214018535944790464188373356069155886308912021879776773965543265334691255780360000193382360894857288387833866862452895668437033879014445933593366080906588006252357461440974097529351484587197949507429076821558595038761449317943291207823193475413983040511394832187427217078190538068033021308322869753960599378850729482330459373024884684211320941687287856812504203138157394523061230419674750350870547704119424265073268038873037359118504422970734694443630522910557485675618092901202999200153514086645456723 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 484f5afa2f4a9a5ee050f36b7b55a5def5be345d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 36070dab4c9abfa0fce6214509ba0902636d00ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon.org/InCommonServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.incommon.org/InCommonServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.incommon.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'klab.ci.uchicago.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004f8cab395593447e21dd75706a41d17419fb1c4107ae2ed890abee8099985ad66cc4725686a9b808e230c890d7148797066401eae328d40671de63515de6b77a5ce956942dece1777d52d16443b96f961269b2b4bdaacbb780e54c574d8fe84339388880bba6b7e02fee848de36a8f694e3c2b06ae92b99a80baea7b304d7cb688a14b8902c30e464be2a35c328a9860f4cb71aeb0ca9b1c65ff967a5b4bd6ac83437c530721775cbcf39e4178b174be10e0cf9f733780d049895b5e9384bead048334ebe1e322dd2f7cce4ad7ab757d032fe599e78bd63910cc6f86b8db639ab27802b7dbbe0a551e98a7f1780e1df76553660af034241bf28a7c9507aba683