ldap-ad.ucdenver.edu

- University of Colorado Denver -

Issued by COMODO RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number 39:7d:e1:58:3b:25:d1:96:99:33:3f:2a:3f:17:d1:4b was issued on by COMODO CA Limited.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of Colorado Denver

Organization: University of Colorado Denver
Organization unit: OiT
Organization unit: Hosted by University of Colorado Denver
Organization unit: Unified Communications
Address: 13001 East 17th Place
Postal code: 80045
State / Province: Colorado
Locality: Aurora
Country: US

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 39:7d:e1:58:3b:25:d1:96:99:33:3f:2a:3f:17:d1:4b
Serial Number (int): 76419603399601516677621278549342671179
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 9b:a5:55:0f:80:3a:50:2a:ae:a2:26:00:c9:77:ad:31:fd:fd:61:e4
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24

Fingerprint (sha1): d5:e4:fa:cd:ff:e9:6c:02:e9:11:6c:57:e3:78:25:a1:36:cd:38:a5
Fingerprint (sha256): 09:9d:72:8b:6d:ae:95:1a:d1:77:b8:0d:02:e1:aa:b2:70:49:26:62:b9:04:0f:99:2d:0a:ec:ca:f5:70:1a:d9

Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate ldap-ad.ucdenver.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ldap-ad.ucdenver.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ldap-ad.ucdenver.edu

Other certificates including the domain name ucdenver.edu

(limited to 100 certificates)
profiles.ucdenver.edu
cluster3.technolutions.net
architectureandplanning.ucdenver.edu
skyline.ucdenver.edu
waf2.offcampuspartners.com
tls.automattic.com
myaccount.ucdenver.edu
sehdforms.ucdenver.edu
webapps-int-test.ucdenver.edu
buildinginspections.ucdenver.edu
forms.ucdenver.edu
citeak.multidevcom.uaf.edu
skyline.ucdenver.edu
da-prod.sdm.ucdenver.edu
cluster3.technolutions.net
source.ucdenver.edu
ucdenver.edu
gem.business.ucdenver.edu
chns120.courseresource.yale.edu
profiles.ucdenver.edu
remote.ucdenver.edu
educationsurvey.ucdenver.edu
survey.alumni.ucdenver.edu
tls.automattic.com
dc-acs.ucdenver.edu
dhharedcap.ucdenver.edu
dev.wellness.yale.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
vpn.ucdenver.edu
gp-vpn.ucdenver.edu
cuoform.ucdenver.edu
cuonlineblog.ucdenver.edu
eap.international.ucdenver.edu
offcampushousing.fau.edu
live.ucdavis.edu
ogc.ucdenver.edu
application.admissions.ucdenver.edu
hslibraryguides.ucdenver.edu
chns168.courseresource.yale.edu
dhharedcap.ucdenver.edu
n002.offcampuspartners.com
mycusouth.atelinttest.ucdenver.edu
psoa-ucd.ucdenver.edu
murpjobs.ucdenver.edu
liberalarts.ss.pacific.edu
dev.embody.yale.edu
club.kjzz.org
phenogen.ucdenver.edu
offcampushousing.fau.edu
oncoreval.researchadmin.ucdenver.edu
myaccount-test.ucdenver.edu
dev.wellness.yale.edu
offcampushousing.fau.edu
idfinder.ucdenver.edu
oncorerss.researchadmin.ucdenver.edu
gem.business.ucdenver.edu
connectmeeting.ucdenver.edu
cytometry.som.ucdenver.edu
fe-26.ucdenver.edu
mydesktop.ucdenver.edu
cuonlineblog.ucdenver.edu
v-fe26-2017.ucdenver.edu
mybabymymove.ucdenver.edu
webapps-test.ucdenver.edu
cuonline.edu
ucdenver-wireless.ucdenver.edu
clinicaltrials.ucdenver.edu
cluster3.technolutions.net
208.lsnc.net
remote.ucdenver.edu
ldap-ad.ucdenver.edu
forms.ucdenver.edu
live.bme.cornell.edu
hslibraryguides.ucdenver.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
oitsupport.ucdenver.edu
educationsurvey.ucdenver.edu
onlinelearning.ucdenver.edu
legacy.hq.philabundance.org
banking-business-review.com
som.ucdenver.edu
remote.ucdenver.edu
application.admissions.ucdenver.edu
news.ucdenver.edu
connect.iadb.org
www1.ucdenver.edu
jira.ucdenver.edu
star.ucdenver.edu
hsl-ezproxy.ucdenver.edu
5637869485948928-fe4.pantheonsite.io
n002.offcampuspartners.com
auth-prod.ucdenver.edu
virtue.ucdenver.edu
offcampushousing.fau.edu
som.ucdenver.edu
cophin.ucdenver.edu
impulse.ucdenver.edu
cluster3.technolutions.net

Certificate

The complete raw certificate details for ldap-ad.ucdenver.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHkDCCBnigAwIBAgIQOX3hWDsl0ZaZMz8qPxfRSzANBgkqhkiG9w0BAQsFADCB
ljELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G
A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPDA6BgNV
BAMTM0NPTU9ETyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl
cnZlciBDQTAeFw0xODA3MDkwMDAwMDBaFw0yMDA3MDgyMzU5NTlaMIIBCTELMAkG
A1UEBhMCVVMxDjAMBgNVBBETBTgwMDQ1MREwDwYDVQQIEwhDb2xvcmFkbzEPMA0G
A1UEBxMGQXVyb3JhMR4wHAYDVQQJExUxMzAwMSBFYXN0IDE3dGggUGxhY2UxJjAk
BgNVBAoTHVVuaXZlcnNpdHkgb2YgQ29sb3JhZG8gRGVudmVyMQwwCgYDVQQLEwNP
aVQxMDAuBgNVBAsTJ0hvc3RlZCBieSBVbml2ZXJzaXR5IG9mIENvbG9yYWRvIERl
bnZlcjEfMB0GA1UECxMWVW5pZmllZCBDb21tdW5pY2F0aW9uczEdMBsGA1UEAxMU
bGRhcC1hZC51Y2RlbnZlci5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCtXR3jS3vATkY5ZkwRvuawtNIFNxLzAHOv9304hlSbfnzuR2i6CoqLducE
n1q7UH1bz0+sGrJHX1zLpEGQjeWAYuY6NL8lHPllencC1MNRnS+/Ubry8aOKIdyv
jz4BPdf+jYXpdCuxDPHyER1Fb1PuKrsDQVBKg/bW9vhBtcKewG1r271owvFl/yDe
PjY26gfu7iYo6NBxWdHdutDkSAOgFgm5N/EG4LAUcNsWUl1i1BYJVOX3vU1kQSiS
oOWZig5DINvZQX8GPq3r3FhQ1WQCqqiqIOLhvvqmQVl+t9HEvwf0Q6ehX5FNI7wK
SOeTSRsKYwVhygZVuPTIKjBY1PiZAgMBAAGjggNiMIIDXjAfBgNVHSMEGDAWgBSa
8yvaz61Pti+7KkhIKhK3G0LBJDAdBgNVHQ4EFgQUm6VVD4A6UCquoiYAyXetMf39
YeQwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYB
BQUHAwEGCCsGAQUFBwMCMFAGA1UdIARJMEcwOwYMKwYBBAGyMQECAQMEMCswKQYI
KwYBBQUHAgEWHWh0dHBzOi8vc2VjdXJlLmNvbW9kby5jb20vQ1BTMAgGBmeBDAEC
AjBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01P
RE9SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGL
BggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2Eu
Y29tL0NPTU9ET1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJD
QS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAfBgNV
HREEGDAWghRsZGFwLWFkLnVjZGVudmVyLmVkdTCCAYAGCisGAQQB1nkCBAIEggFw
BIIBbAFqAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFkgQOD
HwAABAMARzBFAiBXNdTjdtrfN7eOUGnImi4dsIAwDdjgKHiywJQmbLOs7wIhAP77
dPiQ4WY2VrMJ3oxCG3EdPjyCccryh/wyMZ0GJeYrAHcAXqdz+d9WwOe1Nkh90Eng
MnqRmgyEoRIShBh1loFxRVgAAAFkgQODegAABAMASDBGAiEAiWUxSVzGZJCyajA8
dAS5wstqotO1/8wNqQaRjlsmnrcCIQCH1X92VpCF3owIy4YNwurQsRVa2pKWOJmx
z+hHpr/LygB3AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABZIED
g0UAAAQDAEgwRgIhAOpn6c341/vNVphi9X3YeS/kssHktA/KHtV/XojCZ0cAAiEA
rw62QFKeSrWLTc21UTKdV8QHzsv6qU+adWXq47M4tRQwDQYJKoZIhvcNAQELBQAD
ggEBABo5h4tl01xXi7HqeoIv1CXg+ea/+dSFia1LT7wx8F8hJZqsQHFvnidKhJEJ
+G+gh+pKlU4iT8QVWnGfTpZNYqn7QvgVQ+l1Kn996r1VGbCYbfhANE14CY8unL7L
uOn31qQ4QT/gaVaMOfv8i7tQTXeCleddX+em7zQXp70ssENVbfXW3+nZeYbLEkW0
/pU/g1s49bDCfV/sMjyco/84kNgRQsldvLRnnLnW4gRMkmlZxH/3qboF0OFnX+4t
dLCD35VgV/N6znuaKOvPVzKcdEzIJMLx+ipkDGQLQIOa8Zy4aQiz6U4SdsHtaU/q
I4JfSa8kOXjtN3InOLcGr/EZI8k=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArV0d40t7wE5GOWZMEb7m
sLTSBTcS8wBzr/d9OIZUm3587kdougqKi3bnBJ9au1B9W89PrBqyR19cy6RBkI3l
gGLmOjS/JRz5ZXp3AtTDUZ0vv1G68vGjiiHcr48+AT3X/o2F6XQrsQzx8hEdRW9T
7iq7A0FQSoP21vb4QbXCnsBta9u9aMLxZf8g3j42NuoH7u4mKOjQcVnR3brQ5EgD
oBYJuTfxBuCwFHDbFlJdYtQWCVTl971NZEEokqDlmYoOQyDb2UF/Bj6t69xYUNVk
AqqoqiDi4b76pkFZfrfRxL8H9EOnoV+RTSO8Ckjnk0kbCmMFYcoGVbj0yCowWNT4
mQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 76419603399601516677621278549342671179
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-09 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '80045'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Colorado'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aurora'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '13001 East 17th Place'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Colorado Denver'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OiT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by University of Colorado Denver'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Unified Communications'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ldap-ad.ucdenver.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21885144339675433952828086238565919002126279912155618146390900486454348094408768234556681675826569581106565098771023586942907450750589937745089714247481221759841251001805514381055826262394997804922745017200438461394848871501735510072703136100006916521436842740686146257811119610957789887684706967492770007901106972816400059237869392821260013476815498818581224117438145438826578285758563037770620973669191648263044688160939799883807644419125881023236894909943279705296003325213310067144578640501679785331578921646554406384844358645946306691331222091728998981684745723731152902606110518519272977930816723721756289071257
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9ba5550f803a502aaea22600c977ad31fdfd61e4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap-ad.ucdenver.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							016a007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001648103831f000004030047304502205735d4e376dadf37b78e5069c89a2e1db080300dd8e02878b2c094266cb3acef022100fefb74f890e1663656b309de8c421b711d3e3c8271caf287fc32319d0625e62b0077005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001648103837a0000040300483046022100896531495cc66490b26a303c7404b9c2cb6aa2d3b5ffcc0da906918e5b269eb702210087d57f76569085de8c08cb860dc2ead0b1155ada92963899b1cfe847a6bfcbca0077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000164810383450000040300483046022100ea67e9cdf8d7fbcd569862f57dd8792fe4b2c1e4b40fca1ed57f5e88c2674700022100af0eb640529e4ab58b4dcdb551329d57c407cecbfaa94f9a7565eae3b338b514
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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