api.stonybrook.edu
- Stony Brook University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 2d:24:09:67:a9:ee:ed:55:75:c3:08:7c:ab:38:ca:6e was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Stony Brook University
Organization:
Stony Brook University
Organization unit: Division of Information Technology
Organization unit: Division of Information Technology
State / Province:
New York
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 2d:24:09:67:a9:ee:ed:55:75:c3:08:7c:ab:38:ca:6eSerial Number (int): 60002373252007451691749923424489228910
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: f4:f0:8a:6d:fb:e9:35:72:2a:5d:84:42:b0:42:6f:f4:15:3b:12:f9
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 75:15:e0:57:53:a6:b8:c5:ff:bb:f9:82:01:b2:8f:96:c3:70:6c:71
Fingerprint (sha256): 06:96:7c:93:64:30:75:ce:96:03:43:84:55:f8:d8:14:3a:b0:5c:c4:14:b1:70:90:17:03:cb:a6:ff:8c:c7:d7
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate api.stonybrook.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.stonybrook.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.stonybrook.edu
Other certificates including the domain name stonybrook.edu
(limited to 100 certificates)
svn.cs.stonybrook.edu
sql-tmates16-p.uhmc.sbuh.stonybrook.edu
answers.library.stonybrook.edu
statuspage.io
5098030885765120-fe4.pantheonsite.io
givingday.stonybrook.edu
cloud-status.typesense.org
guides.library.stonybrook.edu
statuspage.io
statuspage.io
rdpgw-2fa.cc.stonybrook.edu
5745710343389184-fe4.pantheonsite.io
grading.cse356.compas.cs.stonybrook.edu
sunapsistest.campus.stonybrook.edu
5098030885765120-fe4.pantheonsite.io
5098030885765120-fe4.pantheonsite.io
5707532110659584-fe2.pantheonsite.io
arrive.cs.stonybrook.edu
sbmta2.cc.stonybrook.edu
vsst.stonybrook.edu
webappys.cc.stonybrook.edu
5721185543258112-fe3.pantheonsite.io
nanocas.ece.stonybrook.edu
clubred.stonybrook.edu
5717119551406080-fe2.pantheonsite.io
sqlnode2-p.campus.stonybrook.edu
seniorclasslegacy.stonybrook.edu
5707532110659584-fe2.pantheonsite.io
5699866936213504-fe4.pantheonsite.io
5719980670713856-fe1.pantheonsite.io
6250489796624384-fe1.pantheonsite.io
teams.stonybrook.edu
its.msudenverstatus.com
5707532110659584-fe2.pantheonsite.io
testhighsierra01.sinc.stonybrook.edu
sbmatters.stonybrook.edu
sql-ips16-p1.uhmc.sbuh.stonybrook.edu
icdm2015.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
webapp1.cc.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
enroll.stonybrook.edu
5737664527466496-fe3.pantheonsite.io
redcap.stonybrook.edu
ascomaxess.uhmc.sbuh.stonybrook.edu
sdmwc.uhmc.sbuh.stonybrook.edu
research-pp.stonybrook.edu
stemsoftclinic.uhmc.sbuh.stonybrook.edu
xsrv2.mm.cs.stonybrook.edu
policymanagerd.uhmc.sbuh.stonybrook.edu
testsmg.cc.stonybrook.edu
5717119551406080-fe2.pantheonsite.io
statuspage.io
statuspage.io
coi.myresearch.stonybrook.edu
statuspage.io
dsfrey.javits.stonybrook.edu
statuspage.io
sql-spkctrm16p1.uhmc.sbuh.stonybrook.edu
uhmc-xapp-sf-d.uhmc.sbuh.stonybrook.edu
5759778777202688-fe2.pantheonsite.io
chartcompletion.hospital.stonybrook.edu
6250489796624384-fe1.pantheonsite.io
5766380947243008-fe1.pantheonsite.io
statuspage.io
you.stonybrook.edu
grants.myresearch.stonybrook.edu
mysbfiles.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
disaster.studies.stonybrook.edu
5721185543258112-fe3.pantheonsite.io
5745710343389184-fe4.pantheonsite.io
statuspage.io
cucmpub-ms.cewit.stonybrook.edu
p250.cc.stonybrook.edu
classroomfinder.tlt.stonybrook.edu
statuspage.io
p250.cc.stonybrook.edu
icdm2015.stonybrook.edu
liberalarts.ss.pacific.edu
5766380947243008-fe1.pantheonsite.io
statuspage.io
addc2.campus.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
mypasswords.stonybrook.edu
myresearch.stonybrook.edu
expeditions.sandiegozoo.org
6250489796624384-fe1.pantheonsite.io
adfs01.cs.stonybrook.edu
5714902542974976-fe3.pantheonsite.io
api.stonybrook.edu
statuspage.io
ip-e.stonybrook.edu
5714902542974976-fe3.pantheonsite.io
sp-db16-p.uhmc.sbuh.stonybrook.edu
housing.stonybrook.edu
sql-vsync16-p.uhmc.sbuh.stonybrook.edu
mobile.cc.stonybrook.edu
hctestapp2.campus.stonybrook.edu
addc3.campus.stonybrook.edu
sql-tmates16-p.uhmc.sbuh.stonybrook.edu
answers.library.stonybrook.edu
statuspage.io
5098030885765120-fe4.pantheonsite.io
givingday.stonybrook.edu
cloud-status.typesense.org
guides.library.stonybrook.edu
statuspage.io
statuspage.io
rdpgw-2fa.cc.stonybrook.edu
5745710343389184-fe4.pantheonsite.io
grading.cse356.compas.cs.stonybrook.edu
sunapsistest.campus.stonybrook.edu
5098030885765120-fe4.pantheonsite.io
5098030885765120-fe4.pantheonsite.io
5707532110659584-fe2.pantheonsite.io
arrive.cs.stonybrook.edu
sbmta2.cc.stonybrook.edu
vsst.stonybrook.edu
webappys.cc.stonybrook.edu
5721185543258112-fe3.pantheonsite.io
nanocas.ece.stonybrook.edu
clubred.stonybrook.edu
5717119551406080-fe2.pantheonsite.io
sqlnode2-p.campus.stonybrook.edu
seniorclasslegacy.stonybrook.edu
5707532110659584-fe2.pantheonsite.io
5699866936213504-fe4.pantheonsite.io
5719980670713856-fe1.pantheonsite.io
6250489796624384-fe1.pantheonsite.io
teams.stonybrook.edu
its.msudenverstatus.com
5707532110659584-fe2.pantheonsite.io
testhighsierra01.sinc.stonybrook.edu
sbmatters.stonybrook.edu
sql-ips16-p1.uhmc.sbuh.stonybrook.edu
icdm2015.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
webapp1.cc.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
enroll.stonybrook.edu
5737664527466496-fe3.pantheonsite.io
redcap.stonybrook.edu
ascomaxess.uhmc.sbuh.stonybrook.edu
sdmwc.uhmc.sbuh.stonybrook.edu
research-pp.stonybrook.edu
stemsoftclinic.uhmc.sbuh.stonybrook.edu
xsrv2.mm.cs.stonybrook.edu
policymanagerd.uhmc.sbuh.stonybrook.edu
testsmg.cc.stonybrook.edu
5717119551406080-fe2.pantheonsite.io
statuspage.io
statuspage.io
coi.myresearch.stonybrook.edu
statuspage.io
dsfrey.javits.stonybrook.edu
statuspage.io
sql-spkctrm16p1.uhmc.sbuh.stonybrook.edu
uhmc-xapp-sf-d.uhmc.sbuh.stonybrook.edu
5759778777202688-fe2.pantheonsite.io
chartcompletion.hospital.stonybrook.edu
6250489796624384-fe1.pantheonsite.io
5766380947243008-fe1.pantheonsite.io
statuspage.io
you.stonybrook.edu
grants.myresearch.stonybrook.edu
mysbfiles.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
disaster.studies.stonybrook.edu
5721185543258112-fe3.pantheonsite.io
5745710343389184-fe4.pantheonsite.io
statuspage.io
cucmpub-ms.cewit.stonybrook.edu
p250.cc.stonybrook.edu
classroomfinder.tlt.stonybrook.edu
statuspage.io
p250.cc.stonybrook.edu
icdm2015.stonybrook.edu
liberalarts.ss.pacific.edu
5766380947243008-fe1.pantheonsite.io
statuspage.io
addc2.campus.stonybrook.edu
5765867027562496-fe4.pantheonsite.io
mypasswords.stonybrook.edu
myresearch.stonybrook.edu
expeditions.sandiegozoo.org
6250489796624384-fe1.pantheonsite.io
adfs01.cs.stonybrook.edu
5714902542974976-fe3.pantheonsite.io
api.stonybrook.edu
statuspage.io
ip-e.stonybrook.edu
5714902542974976-fe3.pantheonsite.io
sp-db16-p.uhmc.sbuh.stonybrook.edu
housing.stonybrook.edu
sql-vsync16-p.uhmc.sbuh.stonybrook.edu
mobile.cc.stonybrook.edu
hctestapp2.campus.stonybrook.edu
addc3.campus.stonybrook.edu
Certificate
The complete raw certificate details for api.stonybrook.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG1jCCBb6gAwIBAgIQLSQJZ6nu7VV1wwh8qzjKbjANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMTEyMDIwMDAwMDBaFw0yMzAxMDIy MzU5NTlaMIGLMQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxHzAdBgNV BAoTFlN0b255IEJyb29rIFVuaXZlcnNpdHkxKzApBgNVBAsTIkRpdmlzaW9uIG9m IEluZm9ybWF0aW9uIFRlY2hub2xvZ3kxGzAZBgNVBAMTEmFwaS5zdG9ueWJyb29r LmVkdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALqAA3U0ER6RKELg TDAiyu0RyHwEZviqKL4juqzeNypQEBe7tPqV1Z5Nl6PBpZ7D9Dlj6K9xbFp9Xcro X1gb+778tvkPW3Jy++rTJQ2zwLcCvrpxq4Vz52jYzGIE8MOzaJSuRRcxX/HKG84X KBokeZtG+Od6C306UoUAvVPU9yUT0kPc9GKPGqHskhufX2L3Pj280kgdeMpUCIOX NSaqfqFnmFL80C/Z093IBArgqdfzCCjyjqzAV1dzHW5KiNRNlOfHCQZ1LjkmVNux iQbc78bfSdNh4kgA+YmqM23XCjlWUw4Bq3lj4WuwtefNo5gqgNtzogs9KhMq41Hz KHA2WisCAwEAAaOCA0gwggNEMB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEA DOc4MB0GA1UdDgQWBBT08Ipt++k1cipdhEKwQm/0FTsS+TAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw ZwYDVR0gBGAwXjBSBgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6 Ly93d3cuaW5jb21tb24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAI BgZngQwBAgIwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1y c2Eub3JnL0luQ29tbW9uUlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+ BggrBgEFBQcwAoYyaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNB U2VydmVyQ0FfMi5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVz dC5jb20wHQYDVR0RBBYwFIISYXBpLnN0b255YnJvb2suZWR1MIIBfgYKKwYBBAHW eQIEAgSCAW4EggFqAWgAdQCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yC igAAAX18cWluAAAEAwBGMEQCIAqefSZOjglk80+IXBCR1ivsasPRbGlXpFxeU/3D UGNSAiB56qNYQVdIwiQ2JQ4fTc6FTKguWqow93aycfse43f5wwB2AHoyjFTYty22 IOo44FIe6YQWcDIThU070ivBOlejUutSAAABfXxxaXkAAAQDAEcwRQIhAKzOP300 6zz1cdBAfHmGUIvbv8i8LqEdhAY6Hk4eIsovAiAxB7p0oHNwdNfKDwsEUxtksvSc q1OmMrNadcBOiJdfBAB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1u AAABfXxxaU4AAAQDAEgwRgIhAPCro1Rx6Vbry0sm3Ru110TpR/pu5hoFX8vb6dyO s++JAiEAxfat+Q+DDuD/vwyoc2d6L4P0M2kkGVXwBjuPUDSB32IwDQYJKoZIhvcN AQELBQADggEBAB6C0wRZQaiB/Qgjfo8KqHq9XHL+RITZU3D+6zEvbV2MHwoSyQKC N4vDqCsNuFC69D2eDmHsTboZ7l6NANNbMAeRdX1X/zguAYppsLD7IzgiY/pdbYV6 zDgnpm883F4osIfpfWTEV1GB1oQaiekamDaOgkPejNZQwxxXevUwTh9WA9QY+7Mo Uhqi3GnasoP97AU+7czjPTS0OHawluR3KCXM/1o4U+17xsfzB8w1r6ZX6BAC6KZq w1ZZz3yXGzvlgWgI+UEv5nMoelqsFg/xE08XZogx2kKeEpqUn6epD+EEubDbj4iQ PKlRCL8BVsGIBvDlQpuen+d8+YshgdexZRE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoADdTQRHpEoQuBMMCLK 7RHIfARm+KooviO6rN43KlAQF7u0+pXVnk2Xo8GlnsP0OWPor3FsWn1dyuhfWBv7 vvy2+Q9bcnL76tMlDbPAtwK+unGrhXPnaNjMYgTww7NolK5FFzFf8cobzhcoGiR5 m0b453oLfTpShQC9U9T3JRPSQ9z0Yo8aoeySG59fYvc+PbzSSB14ylQIg5c1Jqp+ oWeYUvzQL9nT3cgECuCp1/MIKPKOrMBXV3MdbkqI1E2U58cJBnUuOSZU27GJBtzv xt9J02HiSAD5iaozbdcKOVZTDgGreWPha7C1582jmCqA23OiCz0qEyrjUfMocDZa KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 60002373252007451691749923424489228910 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stony Brook University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Division of Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.stonybrook.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23543450536784842391928431504556040183789184604177959282419104265020106643492439568056877183315537042416450962535410350618762571807505208675250247740126726827377508436817815399177735937593259837135644861750516430970738520423195322317926480145592982631132212272251574462337336773461046132214045501186416048590820888161518524398175125752964751939673409207485177188349617747839195394231678347084023755568226966489827781207666115545648328491575766773582589220196651351440118448457159319036023257831464971728608106410223382343856536686200875159772331390100593774699326349216114141321017515165642265956806737948470335134251 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f4f08a6dfbe935722a5d8442b0426ff4153b12f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.stonybrook.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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