labapps.rockefeller.edu
Issued by R3
About this certificate
This digital certificate with serial number 04:c3:78:02:f2:77:4b:cf:20:0e:27:bc:d5:7b:e7:58:04:48 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=labapps.rockefeller.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c3:78:02:f2:77:4b:cf:20:0e:27:bc:d5:7b:e7:58:04:48Serial Number (int): 414963727938506631133917165511863633970248
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 8f:56:3d:a4:7e:fe:84:f3:7e:5a:76:8e:11:65:63:41:3f:f0:b5:b3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 10:d3:c3:79:31:95:5a:bb:13:3d:ff:c5:aa:eb:4a:28:b4:0e:ca:3d
Fingerprint (sha256): 08:a5:6d:c7:da:f1:3b:3f:d0:65:be:49:ee:7b:65:b6:e3:83:e5:8c:28:9d:be:b1:bb:84:a4:fb:5c:6d:34:44
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate labapps.rockefeller.edu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for labapps.rockefeller.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
labapps.rockefeller.edu
labapps01.rockefeller.edu
labapps01.rockefeller.edu
Other certificates including the domain name rockefeller.edu
(limited to 100 certificates)
courses.rockefeller.edu
pubsubmit.rockefeller.edu
phe.rockefeller.edu
rubbdb2.rockefeller.edu
stage.rockedu.rockefeller.edu
mchc.rockefeller.edu
www.rockefeller.edu
phe.rockefeller.edu
parclip.rockefeller.edu
rushib.rockefeller.edu
formspolicies.rockefeller.edu
rocklab.rockefeller.edu
sopstudentapplication.rockefeller.edu
hgidlabredcap.rockefeller.edu
academicseminars.rockefeller.edu
ldaptest.rockefeller.edu
incubator.rockefeller.edu
formspolicies.rockefeller.edu
cctscertificate.rockefeller.edu
giveandjoin.rockefeller.edu
womenandscience.rockefeller.edu
oas.rockefeller.edu
cctscertificate.rockefeller.edu
phe.rockefeller.edu
vosshall-intra.rockefeller.edu
rumail.rockefeller.edu
appext.rockefeller.edu
bridges.rockefeller.edu
labapps.rockefeller.edu
cp.rockefeller.edu
pilotprojectsreview.rockefeller.edu
rumail.rockefeller.edu
netstat.rockefeller.edu
surfapplication.rockefeller.edu
cctscertificate.rockefeller.edu
go.rockefeller.edu
notifyru.rockefeller.edu
pubsubmit.rockefeller.edu
webmail.rockefeller.edu
reeke-pubdata.rockefeller.edu
eventreg.rockefeller.edu
elf.rockefeller.edu
virtualroom-graduate.rockefeller.edu
bh.rockefeller.edu
postdocalumni.rockefeller.edu
scholarapplication.rockefeller.edu
em.rockefeller.edu
itservices.rockefeller.edu
cchi.rockefeller.edu
virtualroom.rockefeller.edu
ruauth2.rockefeller.edu
bh.rockefeller.edu
pdf-files-test.rockefeller.edu
sopstudentapplication.rockefeller.edu
postdochousingwaitlist.rockefeller.edu
www.rockefeller.edu
xenopus.rockefeller.edu
giveandjoin.rockefeller.edu
maimonlab.rockefeller.edu
ruifar.rockefeller.edu
images.rockefeller.edu
www.rockefeller.edu
test4.rockedu.rockefeller.edu
rumail.rockefeller.edu
appintpl.rockefeller.edu
lab.rockefeller.edu
sees.rockefeller.edu
phe.rockefeller.edu
test19.rockedu.rockefeller.edu
plutus.rockefeller.edu
housinglottery.rockefeller.edu
hospitalhelpdesk.rockefeller.edu
biorhythm.rockefeller.edu
netstat.rockefeller.edu
cctscertificate.rockefeller.edu
itmd.rockefeller.edu
cctscertificate.rockefeller.edu
test22.rockedu.rockefeller.edu
zhao.labapps.rockefeller.edu
giveandjoin.rockefeller.edu
elf.rockefeller.edu
webmail.rockefeller.edu
darwin.rockefeller.edu
gradrecruitment.rockefeller.edu
mchc.rockefeller.edu
ruifar.rockefeller.edu
phe.rockefeller.edu
peggy.rockefeller.edu
sslvpntest.rockefeller.edu
rumail.rockefeller.edu
rufirst.rockefeller.edu
virtualroom.rockefeller.edu
housinglottery.rockefeller.edu
courseevaluations.rockefeller.edu
digitalcommons.rockefeller.edu
ias4web.rockefeller.edu
macromolecule.rockefeller.edu
anvesana.rockefeller.edu
sopstudentapplication.rockefeller.edu
graduateapplication.rockefeller.edu
pubsubmit.rockefeller.edu
phe.rockefeller.edu
rubbdb2.rockefeller.edu
stage.rockedu.rockefeller.edu
mchc.rockefeller.edu
www.rockefeller.edu
phe.rockefeller.edu
parclip.rockefeller.edu
rushib.rockefeller.edu
formspolicies.rockefeller.edu
rocklab.rockefeller.edu
sopstudentapplication.rockefeller.edu
hgidlabredcap.rockefeller.edu
academicseminars.rockefeller.edu
ldaptest.rockefeller.edu
incubator.rockefeller.edu
formspolicies.rockefeller.edu
cctscertificate.rockefeller.edu
giveandjoin.rockefeller.edu
womenandscience.rockefeller.edu
oas.rockefeller.edu
cctscertificate.rockefeller.edu
phe.rockefeller.edu
vosshall-intra.rockefeller.edu
rumail.rockefeller.edu
appext.rockefeller.edu
bridges.rockefeller.edu
labapps.rockefeller.edu
cp.rockefeller.edu
pilotprojectsreview.rockefeller.edu
rumail.rockefeller.edu
netstat.rockefeller.edu
surfapplication.rockefeller.edu
cctscertificate.rockefeller.edu
go.rockefeller.edu
notifyru.rockefeller.edu
pubsubmit.rockefeller.edu
webmail.rockefeller.edu
reeke-pubdata.rockefeller.edu
eventreg.rockefeller.edu
elf.rockefeller.edu
virtualroom-graduate.rockefeller.edu
bh.rockefeller.edu
postdocalumni.rockefeller.edu
scholarapplication.rockefeller.edu
em.rockefeller.edu
itservices.rockefeller.edu
cchi.rockefeller.edu
virtualroom.rockefeller.edu
ruauth2.rockefeller.edu
bh.rockefeller.edu
pdf-files-test.rockefeller.edu
sopstudentapplication.rockefeller.edu
postdochousingwaitlist.rockefeller.edu
www.rockefeller.edu
xenopus.rockefeller.edu
giveandjoin.rockefeller.edu
maimonlab.rockefeller.edu
ruifar.rockefeller.edu
images.rockefeller.edu
www.rockefeller.edu
test4.rockedu.rockefeller.edu
rumail.rockefeller.edu
appintpl.rockefeller.edu
lab.rockefeller.edu
sees.rockefeller.edu
phe.rockefeller.edu
test19.rockedu.rockefeller.edu
plutus.rockefeller.edu
housinglottery.rockefeller.edu
hospitalhelpdesk.rockefeller.edu
biorhythm.rockefeller.edu
netstat.rockefeller.edu
cctscertificate.rockefeller.edu
itmd.rockefeller.edu
cctscertificate.rockefeller.edu
test22.rockedu.rockefeller.edu
zhao.labapps.rockefeller.edu
giveandjoin.rockefeller.edu
elf.rockefeller.edu
webmail.rockefeller.edu
darwin.rockefeller.edu
gradrecruitment.rockefeller.edu
mchc.rockefeller.edu
ruifar.rockefeller.edu
phe.rockefeller.edu
peggy.rockefeller.edu
sslvpntest.rockefeller.edu
rumail.rockefeller.edu
rufirst.rockefeller.edu
virtualroom.rockefeller.edu
housinglottery.rockefeller.edu
courseevaluations.rockefeller.edu
digitalcommons.rockefeller.edu
ias4web.rockefeller.edu
macromolecule.rockefeller.edu
anvesana.rockefeller.edu
sopstudentapplication.rockefeller.edu
graduateapplication.rockefeller.edu
Certificate
The complete raw certificate details for labapps.rockefeller.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFjCCBP6gAwIBAgISBMN4AvJ3S88gDie81XvnWARIMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMzExOTE5MDVaFw0yNDAzMzAxOTE5MDRaMCIxIDAeBgNVBAMT F2xhYmFwcHMucm9ja2VmZWxsZXIuZWR1MIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAn2BsCvO1wyf9/axWMp6E5duyIHVbo3sn3Kl/QdqungQaMTrME4SL 6GMrVccXm6xcI4LUKtJyoTt/RjDYKMrLimzfW7BdLLDRdzPvfs4ntmKURFOxOu33 34bT4FhQjmKhQcJGyIxLKJl1ks6LDUtSt3IRLCd3X8QE+hfjKCyY9tytixXYWzqB EqGX3UsXV9cRWNMQJvMSc0+Mg7ziPfFItIE772a080C3EEvm30xjDYxyYZ312vfE 9E21S0YjAttk09HpvZ/BfRWpJ1hB7nlEWPNHO+LUzk4201zP4imvh3I9YfnyS/Z+ RWd9CHa8olIbYF79ngrluxYqbKO20JXQmtfpcKeyOjh6QtTJ+zAQjiwTUsLrVlF5 By+ANSTaiIUJcCtgAicQRsowpGqtJ6Am6eKUV17++RDaSGm23owg/3ElaExidvqX g1NFysyEJ8PqbpyS8fK+rdz+diC0PA0fCj8ihwU/ICv8UCjlrKCIz1VhKaPOTJB4 sOQr/2k19ko+tfpyW0WWZERxj9oprDhpdcK1SodLHz29qhSA0vBpfXdMTdyx9blY qkhGJPLSQT91nNbl4L6bf8V9Z4Fwlop0WXMc33HF9+Lms11eUdVJRwDQtS2iHQSh D8Gc/L23fEkl6eD2eBZbTvN7fJe0dHBUDzHYa7wKj1w71m5vSjCbY/sCAwEAAaOC AjQwggIwMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUj1Y9pH7+hPN+WnaOEWVjQT/w tbMwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wPQYDVR0RBDYwNIIXbGFiYXBwcy5y b2NrZWZlbGxlci5lZHWCGWxhYmFwcHMwMS5yb2NrZWZlbGxlci5lZHUwEwYDVR0g BAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBIsONr2qZH NA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYzBh7VjAAAEAwBHMEUCICSvJ8pf U6FpD5peSK2gR8w0cEjavDklGgWOtX5WnrfRAiEA6toDDCVCEBUAsNR/ila0GzQ5 GVNP38vFvIJKpddzBN8AdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6 dAAAAYzBh7XAAAAEAwBHMEUCICDyNmZJ60x3hq67TpOjsgAH/kzDal2+JTEItsJb 7MRXAiEAlnfPp0bYEgszRUAcE9ERoiyP5eHE+YnPCsYI5lXOqFAwDQYJKoZIhvcN AQELBQADggEBAKsf3br52nNU97lKj1N/j+Wvf+JB3dxXOdhe3LM0EoYlpt16A54C GY4wt1my1mQ0xEtzrrxoOyyvq1H1xYTvMFuRN5NcSb4wkoaiHghD+mfb0NcQJPep sENs7arLJ7nG8D1lPlVyX/fYp1c5oJkB1K4af9ZwCMC0ke9jRqKLBVazvFIgPCkh 6MqXEMMTVJVhUanX2V1A7oNNw0Zer8Gqzrlaf6eucvNkX2P0Y6KyltG13aU/pwGT whbdDUkjtvFt8tSXKohtGxahGo2lQBKiqnADHnHKoyCP3u3yD9cL5uItXEzbevkq 7oWjHmDFTZaDcwBxXUCNIWTfoxG7fhysqfs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAn2BsCvO1wyf9/axWMp6E 5duyIHVbo3sn3Kl/QdqungQaMTrME4SL6GMrVccXm6xcI4LUKtJyoTt/RjDYKMrL imzfW7BdLLDRdzPvfs4ntmKURFOxOu3334bT4FhQjmKhQcJGyIxLKJl1ks6LDUtS t3IRLCd3X8QE+hfjKCyY9tytixXYWzqBEqGX3UsXV9cRWNMQJvMSc0+Mg7ziPfFI tIE772a080C3EEvm30xjDYxyYZ312vfE9E21S0YjAttk09HpvZ/BfRWpJ1hB7nlE WPNHO+LUzk4201zP4imvh3I9YfnyS/Z+RWd9CHa8olIbYF79ngrluxYqbKO20JXQ mtfpcKeyOjh6QtTJ+zAQjiwTUsLrVlF5By+ANSTaiIUJcCtgAicQRsowpGqtJ6Am 6eKUV17++RDaSGm23owg/3ElaExidvqXg1NFysyEJ8PqbpyS8fK+rdz+diC0PA0f Cj8ihwU/ICv8UCjlrKCIz1VhKaPOTJB4sOQr/2k19ko+tfpyW0WWZERxj9oprDhp dcK1SodLHz29qhSA0vBpfXdMTdyx9blYqkhGJPLSQT91nNbl4L6bf8V9Z4Fwlop0 WXMc33HF9+Lms11eUdVJRwDQtS2iHQShD8Gc/L23fEkl6eD2eBZbTvN7fJe0dHBU DzHYa7wKj1w71m5vSjCbY/sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 414963727938506631133917165511863633970248 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-31 19:19:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 19:19:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'labapps.rockefeller.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 650199999050111653094411249205093506452242488030832065787411329462710283783572117602762645316641692072835980769321949735534452260716883249611689706842752668754193651013465782870745291729530470562550782089282962694113405494655994827133997810259483931439918609753865794319311402643085187593370130238892175205305760700862680524859919591205808777140547037619811571183901419115018241313011217156038823009031057093809417725359517138383938127699201646850988602522473243960558251572538198110884480820019663276933531267562958736926995638295481573361417390288545501244724670361048060136082847768989907143026692382711461948365717504287671539690154043624373812707621333933334187639740627862354521331770801483364477769676378339076517818804469505489087939169027828394669323978618213674558843823252347420267378277010599329970294974389536097560975713265183760286493150505801009214187530507816343343149584339119859085407939683603832152853895133632488652756339170220657988958523907663300300430660877368916348023324720029899143136203181039896736620774663209008416922114652111990079237822425923001294494047322561820416332584412379731770973627865808320402326259757928807070901856772764503978744692555966672839626680554218336842935445543582627312002884603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8f563da47efe84f37e5a768e116563413ff0b5b3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labapps.rockefeller.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labapps01.rockefeller.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cc187b5630000040300473045022024af27ca5f53a1690f9a5e48ada047cc347048dabc39251a058eb57e569eb7d1022100eada030c2542101500b0d47f8a56b41b343919534fdfcbc5bc824aa5d77304df00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cc187b5c00000040300473045022020f2366649eb4c7786aebb4e93a3b20007fe4cc36a5dbe253108b6c25becc4570221009677cfa746d8120b3345401c13d111a22c8fe5e1c4f989cf0ac608e655cea850 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ab1fddbaf9da7354f7b94a8f537f8fe5af7fe241dddc5739d85edcb334128625a6dd7a039e02198e30b759b2d66434c44b73aebc683b2cafab51f5c584ef305b9137935c49be309286a21e0843fa67dbd0d71024f7a9b0436cedaacb27b9c6f03d653e55725ff7d8a75739a09901d4ae1a7fd67008c0b491ef6346a28b0556b3bc52203c2921e8ca9710c31354956151a9d7d95d40ee834dc3465eafc1aaceb95a7fa7ae72f3645f63f463a2b296d1b5dda53fa70193c216dd0d4923b6f16df2d4972a886d1b16a11a8da54012a2aa70031e71caa3208fdeedf20fd70be6e22d5c4cdb7af92aee85a31e60c54d96837300715d408d2164dfa311bb7e1caca9fb