wci.med.buffalo.edu

- SUNY, University at Buffalo -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number ae:34:35:f6:ea:1f:93:7d:24:9d:19:db:b0:85:0e:4b was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

SUNY, University at Buffalo

Organization: SUNY, University at Buffalo
Organization unit: UB
Address: 501 Capen Hall
Postal code: 14260
State / Province: NY
Locality: Buffalo
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): ae:34:35:f6:ea:1f:93:7d:24:9d:19:db:b0:85:0e:4b
Serial Number (int): 231556765233513810464462615539643387467
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 71:a7:76:17:ab:12:c2:5e:7d:06:0b:e3:05:42:3e:05:1d:81:d3:22
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 69:c3:b8:15:14:e6:40:2d:b1:2d:2a:03:4d:ce:70:2c:81:b7:58:3c
Fingerprint (sha256): 04:9a:0d:a8:64:12:f0:da:0e:84:27:4a:e0:d6:72:39:8f:1a:5d:71:b8:80:82:cd:18:36:4c:98:ff:79:87:3a

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate wci.med.buffalo.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for wci.med.buffalo.edu

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

wci.med.buffalo.edu

Other certificates including the domain name buffalo.edu

(limited to 100 certificates)
law-clinics.law.buffalo.edu
roomview-app1d.acsu.buffalo.edu
timeline.cse.buffalo.edu
vpls.buffalo.edu
geowepp.geog.buffalo.edu
www.caset.buffalo.edu
cse.buffalo.edu
ubfoundation.buffalo.edu
cluster3.technolutions.net
cluster3.technolutions.net
learning.buffalo.edu
blogs.curca.buffalo.edu
xdmod.ccr.buffalo.edu
MAIL4.BUFFALO.EDU
ubithelp.shibboleth.buffalo.edu
gseweb.gse.buffalo.edu
fate.eng.shibboleth.buffalo.edu
ubisss.buffalo.edu
enrollmentmanagement.buffalo.edu
audit-prod1.acsu.buffalo.edu
honors.buffalo.edu
cluster3.technolutions.net
cmprod.shibboleth.buffalo.edu
helpdesk.sdm.buffalo.edu
hlpdsk1.shibboleth.buffalo.edu
parking.buffalo.edu
ubvpn.buffalo.edu
prv-apps.sens.buffalo.edu
www.africanamericanstudies.buffalo.edu
learning.buffalo.edu
insocialwork.ssw.buffalo.edu
expr-c-conn01prod.acsu.buffalo.edu
json.webservices.buffalo.edu
sfunder7cert.net
odin.cse.buffalo.edu
listserv-prd.acsu.buffalo.edu
mgt.buffalo.edu
sfunder18cert.net
healthinsurance.buffalo.edu
blogs.webservices.buffalo.edu
gbcrt.ccr.buffalo.edu
subboard.com
publisher-ec-ms.cit.buffalo.edu
stats.ccr.buffalo.edu
tsmserver-b.acsu.buffalo.edu
psdev-app1.acsu.buffalo.edu
metrics.ccr.buffalo.edu
mailfilters.shibboleth.buffalo.edu
cluster3.technolutions.net
uconnectlabs.com
patientportal.buffalo.edu
invenst.cse.buffalo.edu
stream.buffalo.edu
ubcms-author.buffalo.edu
ubwins.cse.buffalo.edu
wci.med.buffalo.edu
advancement.buffalo.edu
lesami.geog.buffalo.edu
riagate2.ria.buffalo.edu
mercury.urh.buffalo.edu
smbswebs.med.buffalo.edu
cluster3.technolutions.net
www.globalgenderstudies.buffalo.edu
cloudmed.med.buffalo.edu
tracker.cbi.buffalo.edu
ccwebdev1.acsu.buffalo.edu
tesserae.caset.buffalo.edu
ubconnect.buffalo.edu
studentaccounts.buffalo.edu
tickets.sa.buffalo.edu
cluster3.technolutions.net
blogs.curca.buffalo.edu
prv-web.eng.buffalo.edu
gdw.ccr.buffalo.edu
psych174a.psy.buffalo.edu
ipeer.caset.buffalo.edu
ctms-trn.acsu.buffalo.edu
ubseasconnect.buffalo.edu
ubstream-upload.buffalo.edu
wiki.cse.buffalo.edu
owa.hwi.buffalo.edu
zinc.cse.buffalo.edu
helpdesk.sdm.buffalo.edu
ja01.chem.buffalo.edu
prv-web.eng.buffalo.edu
prv-apps.sens.buffalo.edu
dooracc-dev.acsu.buffalo.edu
www.acsu.buffalo.edu
exploratory-advising.buffalo.edu
wise.buffalo.edu
cluster3.technolutions.net
mobility.card.buffalo.edu
autosys-prd.acsu.buffalo.edu
www.vpls.buffalo.edu
tesserae.caset.buffalo.edu
dirtydeeds.cse.buffalo.edu
dirtydeeds.cse.buffalo.edu
www.ccr.buffalo.edu
smbssyn2.med.buffalo.edu
rt.caset.buffalo.edu

Certificate

The complete raw certificate details for wci.med.buffalo.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 231556765233513810464462615539643387467
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-09 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '14260'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NY'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Buffalo'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '501 Capen Hall'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SUNY, University at Buffalo'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'wci.med.buffalo.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 759212250539597531629051214940472649971090938529858989295079349796964182133370643652024670392681041366921020563924392772026965887685056946894956248055451572037522881937688598798134830063132232399547459922218909309961570800320464791388869094494190374852294266677690972210043717324184162087733781301003587373402406535516347921729060545128090154729657884849810380938711294127014736066665941688369075501666605021958387429899273680748174485624079802446934897434860713293314638858541258468452817284168367331772326833598567220847857268672427363048604111026992862049781477043806715260110683538892996874448048716366497581262598002009110441731162558063522188576604625965044472658659723504779376570957759063229272904774769539089871297068690314127101655069947475364789179437622972766550092534405604405148916859817453472951887960486674710662766809796867228949605001524946994795474834071850458763052770774994888031192648806953453991268999888803637247991976456163521439309838786427871548696926794784650060311305323395242578366990975467792195286997409769525006546072468584149622700262040254851512543872341828943721785538271440667962745640574655880677643489492171984883332933024523531404970787375977141632844287593165684250047777582347003352436178463
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							71a77617ab12c25e7d060be305423e051d81d322
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wci.med.buffalo.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00633fbc24d8a2450752e173c34763fb4b071d92617eef84b77a703ec1548fa0ec52bb088c1eb476486fcbbc14cb43ec60a65d0c2bbe90dee5d1a159e851146758b4d1ac8a9a8232fd76253ae735c59fcd34281f7097f56df631c8a638e2fec4832b1323e65fcd6658e53d6a767b5515f73cf88fcdc109b208aa37c68e3ef847eb66129798788541d76af6bc830e30f49847b742437346eb3ad1a58d33d7e5c02a52979319e3b6a0f570301e4e3729cdfe02cb1d8a5b606eb1cd553d97e0bfbe7294130c26e9b9da86bba1f96150471c6d242a65d5a6f8571ed8c42ae23e14c81121197c970c6bded319194d0843fb3cb07e3a1f8db0fe43ae0ebfde5d30633dfb