herculesdome.org
- University System of New Hampshire -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number d7:d1:6f:32:b2:7a:b3:65:bc:ab:5f:1f:76:66:99:64 was issued on by Internet2.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
University System of New Hampshire
Organization:
University System of New Hampshire
State / Province:
New Hampshire
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): d7:d1:6f:32:b2:7a:b3:65:bc:ab:5f:1f:76:66:99:64Serial Number (int): 286871464501301490575824386107537529188
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 48:10:7c:e6:11:76:6b:0a:2c:43:db:14:90:f8:f0:94:fe:56:3d:e7
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): cf:5f:a5:a5:af:2b:94:6b:46:2e:00:4c:67:3f:60:0f:74:62:ba:51
Fingerprint (sha256): 08:59:ee:08:8d:97:64:8e:b0:a3:ed:79:84:3a:fc:38:8d:55:8a:e8:27:ea:bf:21:24:d2:81:f8:6e:8b:d6:fd
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate herculesdome.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for herculesdome.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
herculesdome.org
hercules-dome.sr.unh.edu
www.herculesdome.org
hercules-dome.sr.unh.edu
www.herculesdome.org
Other certificates including the domain name herculesdome.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for herculesdome.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH5jCCBs6gAwIBAgIRANfRbzKyerNlvKtfH3ZmmWQwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMjMxMDEwMDAwMDAwWhcNMjQxMDA1 MjM1OTU5WjBtMQswCQYDVQQGEwJVUzEWMBQGA1UECBMNTmV3IEhhbXBzaGlyZTEr MCkGA1UEChMiVW5pdmVyc2l0eSBTeXN0ZW0gb2YgTmV3IEhhbXBzaGlyZTEZMBcG A1UEAxMQaGVyY3VsZXNkb21lLm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCC AgoCggIBAMyoWE3diTyidQh+Ek9NEaFWrWMvq2X4BcUTyOxS+t1NJlgBKg3xuXDo CMgLdALNT48SWYizXmCHyX94HHQ0qYPY9gYBEJG5dasMVQfJuzTgHLyx1lq1js3+ 31eu8HTgZQDbALpFhLP+w4mLDFMTVqx6EMt495VrynQ1Uwjw2fqv9e0vXfcF8ykj Owy3HzzAv3WnKO1QysPDhe3AW5h9yFAig2T9It/GlPh3nYwca8KkZ+XXEKtH/EYv 8Al+LnNyx+QBTTW2mY0MbOqYfFhcPzEiL06Ir6wZbPmVxQWL0nbDYkswFpn7c9B8 rDtENerEK5bBvdSKrZFkQqVx5O1uULinz6lLCQIbS/BahkgjHKibcIfnm3ly0v6Z HCyKy/NNTMWMZ0abx9WzPd65x2GEAHrFvbedlolxLJ3ptzYXl+h+uAkoRNG6Q5Up AyaLT7VVmk1P4Uh5PuRWFygw5+lfJQgzHzogQ1ZIpS4X7A095bUstoi/KI8s+mQj efOXs79p8vwZVUFHCKhqXcd1upfy3qD5jE7R0bc4FFRuwMcdY7VKKSw5ozFgKL7V x5g1qj8m+Ps+XKXeeRLJF5Xg2NwH6oQxTnkVybmSAeOBS6xBmAHPuG8ZapLWa1Lc GXODsaE6N4oWIT53HsnjoLP9HRz1ZeN/JMfYFliIYF5DGiBbiORTAgMBAAGjggN2 MIIDcjAfBgNVHSMEGDAWgBQeBaN3j2yW4luHS6a0hqxxAAznODAdBgNVHQ4EFgQU SBB85hF2awosQ9sUkPjwlP5WPecwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQC MAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGcGA1UdIARgMF4wUgYM KwYBBAGuIwEEAwEBMEIwQAYIKwYBBQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9u Lm9yZy9jZXJ0L3JlcG9zaXRvcnkvY3BzX3NzbC5wZGYwCAYGZ4EMAQICMEQGA1Ud HwQ9MDswOaA3oDWGM2h0dHA6Ly9jcmwuaW5jb21tb24tcnNhLm9yZy9JbkNvbW1v blJTQVNlcnZlckNBLmNybDB1BggrBgEFBQcBAQRpMGcwPgYIKwYBBQUHMAKGMmh0 dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9JbkNvbW1vblJTQVNlcnZlckNBXzIuY3J0 MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMIIBfgYKKwYB BAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+Zn TFo6dAAAAYsW/vD2AAAEAwBHMEUCIQDX94g7inG7qKSrkORdwNrfWrIHZ4GB5naF +bz/xEEahwIgTIo3pSR3hobo3MHQyMq7CCU7Y6TlYdyCiYZ+XefqQ+EAdQDatr9r P7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYsW/vFFAAAEAwBGMEQCICr6 ZTBvLYJRg9qOE1Bn1HTMhmeTbAkXAbmATBo86KNcAiBZAtNNtnuCvJ+kbP6Sc82K lTMD7Vj79ZoxtXc5gkrLWgB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZx H7WbAAABixb+8SMAAAQDAEgwRgIhAIXw8EC9yVGXccKp1oLgYZ45zGqxgK/4rFP/ YHoJF8GIAiEAy8yPL4PgLAhExQhy7xxvuKCcNpBI5Mejz5eKMoquXRAwSwYDVR0R BEQwQoIQaGVyY3VsZXNkb21lLm9yZ4IYaGVyY3VsZXMtZG9tZS5zci51bmguZWR1 ghR3d3cuaGVyY3VsZXNkb21lLm9yZzANBgkqhkiG9w0BAQsFAAOCAQEAH7iUhN9T hA+IaRE9tSbE2NNa8bhIqawT4Bcgks4u1j112/KdVDjygqkrLev0cQZDEWfMFONR rBtTW6LQ9iHIuVD8Eb/lByEaJEs32CBE6BvbT4peF7EhXRujALx6o/2nGHp4E8wO jl2+Vr+/LsMeVGjpT5cpfBuhxXPYD9do+5UtQoyi7CSCvuKxcrrDpdVTouBTqII9 vz4jNw9+qgAxuvGgn88J2/hloQ9IQ2pNLe82MGemh6ojmzYNR8fG2OjXEvAvu51M 1bv5cnOW8vCoKSV7xceJ9vgo4w0/fn3Wt1Fp0qTbFdZTTZKUYEwmrWofJ2i7ywuh gcw+pIYvl2GHoQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzKhYTd2JPKJ1CH4ST00R oVatYy+rZfgFxRPI7FL63U0mWAEqDfG5cOgIyAt0As1PjxJZiLNeYIfJf3gcdDSp g9j2BgEQkbl1qwxVB8m7NOAcvLHWWrWOzf7fV67wdOBlANsAukWEs/7DiYsMUxNW rHoQy3j3lWvKdDVTCPDZ+q/17S9d9wXzKSM7DLcfPMC/daco7VDKw8OF7cBbmH3I UCKDZP0i38aU+HedjBxrwqRn5dcQq0f8Ri/wCX4uc3LH5AFNNbaZjQxs6ph8WFw/ MSIvToivrBls+ZXFBYvSdsNiSzAWmftz0HysO0Q16sQrlsG91IqtkWRCpXHk7W5Q uKfPqUsJAhtL8FqGSCMcqJtwh+ebeXLS/pkcLIrL801MxYxnRpvH1bM93rnHYYQA esW9t52WiXEsnem3NheX6H64CShE0bpDlSkDJotPtVWaTU/hSHk+5FYXKDDn6V8l CDMfOiBDVkilLhfsDT3ltSy2iL8ojyz6ZCN585ezv2ny/BlVQUcIqGpdx3W6l/Le oPmMTtHRtzgUVG7Axx1jtUopLDmjMWAovtXHmDWqPyb4+z5cpd55EskXleDY3Afq hDFOeRXJuZIB44FLrEGYAc+4bxlqktZrUtwZc4OxoTo3ihYhPnceyeOgs/0dHPVl 438kx9gWWIhgXkMaIFuI5FMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286871464501301490575824386107537529188 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Hampshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University System of New Hampshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'herculesdome.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 834930153267624361987686444761792820318970107504178299641116340852573354340353074318259305983189308487906564265713465419259678036718076705692373108357624433889990495238796588533107087431863833120976035217101585981573793951673764116222188593884394228284024781187247940436504452520827597751377809955622038451025697955111085098817726269143495858438033088279918525939866398840619201049720527212669485914360986044848734919137909530401826189135320071287307965732397616630758106864122686937224622252799552491215051423785013581419935133500182244014423857658888833629976654652519100941107361046608433951686209719919589840146117543246815224575652616401446055229864242591656323296886204736203181724339169581670859705953333843001779600415415380496042241642643645947792512705154432779860455006166647860200904132836067244891572231109386597499609938842774950852394197056143475331739644157541809250917709954281855537117079987698154316081677373148041956791543881077825896093055892746701377324452893208111526497636357277396561492469156883200574866585821408725037815879033784028540473850099811747201866840310648781804647939344175985992741391044871186820322096131060406545770939694192961725847886545030242640390021558197455102536561421471361570852889683 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 48107ce611766b0a2c43db1490f8f094fe563de7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'herculesdome.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hercules-dome.sr.unh.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.herculesdome.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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