calperformances.org
- University of California at Berkeley -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 53:0e:15:c3:87:3b:c8:10:7b:93:87:e6:99:0d:93:98 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of California at Berkeley
Organization:
University of California at Berkeley
Organization unit: IST-CalNetIdM
Organization unit: IST-CalNetIdM
Address:
200 California Hall #1500
Postal code: 947201500
State / Province: California
Locality: Berkeley
Country: US
Postal code: 947201500
State / Province: California
Locality: Berkeley
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 53:0e:15:c3:87:3b:c8:10:7b:93:87:e6:99:0d:93:98Serial Number (int): 110399057228113619731028083405495309208
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 43:37:e8:b2:ae:87:94:6e:29:f6:b8:34:a3:89:1d:2e:f2:0c:e1:27
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): a5:f0:b3:c8:8b:c8:78:fe:89:1b:f2:47:08:34:21:d1:f5:52:9a:77
Fingerprint (sha256): 0b:d6:33:07:de:d3:b4:c3:cd:8b:af:97:6b:72:6c:d7:3b:19:dd:89:95:ba:bf:1e:61:33:fd:f5:26:86:96:3f
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate calperformances.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for calperformances.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
calperformances.org
Other certificates including the domain name calperformances.org
(limited to 100 certificates)
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
bi.operaphila.org
hub.meed.com
dev.wellness.yale.edu
secure-uswe2-1.tessituranetwork.com
info-dev.calperformances.org
good.gsm.cornell.edu
secure-uswe2-1.tessituranetwork.com
dev.embody.yale.edu
secure-uswe2-1.tessituranetwork.com
expeditions.sandiegozoo.org
club.kjzz.org
secure-uswe2-1.tessituranetwork.com
dev.wellness.yale.edu
5735834829455360-fe3.pantheonsite.io
secure-uswe2-1.tessituranetwork.com
host2.openminds.com
test.calperformances.org
5649684605435904-fe1.pantheonsite.io
secure-uswe2-1.tessituranetwork.com
calperformances.org
secure-uswe2-1.tessituranetwork.com
calperformances.org
secure-uswe2-1.tessituranetwork.com
connect.iadb.org
bi.operaphila.org
secure-uswe2-1.tessituranetwork.com
securessl-pst1.tessituranetworkhost.com
calperformances.org
bi.operaphila.org
acadmintest.cuofco.org
secure-uswe2-1.tessituranetwork.com
5735834829455360-fe3.pantheonsite.io
bi.operaphila.org
securessl-pst1.tessituranetworkhost.com
test.calperformances.org
covid.usmle.org
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
securessl-pst1.tessituranetworkhost.com
calperformances.org
cms.legacy.com
secure-uswe2-1.tessituranetwork.com
dev.dhsri.yale.edu
d7.cmc.edu
clc.shawnee.edu
bi.operaphila.org
industri40.ida.dk
info-dev.calperformances.org
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
d7.cmc.edu
bi.operaphila.org
secure-uswe2-1.tessituranetwork.com
csc.arizona.edu
securessl-pst1.tessituranetworkhost.com
5735834829455360-fe3.pantheonsite.io
secure-uswe2-1.tessituranetwork.com
bi.operaphila.org
csc.arizona.edu
secure-uswe2-1.tessituranetwork.com
csc.arizona.edu
dev.dhsri.yale.edu
secure-uswe2-1.tessituranetwork.com
bi.operaphila.org
bi.operaphila.org
csc.arizona.edu
calperformances.org
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
acadmintest.cuofco.org
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
secure3.calperformances.org
securessl-pst1.tessituranetworkhost.com
connect.iadb.org
bi.operaphila.org
dev-lp-jhubsph.edu.help
citeak.multidevcom.uaf.edu
bi.operaphila.org
industri40.ida.dk
secure-uswe2-1.tessituranetwork.com
coins.rutgers.edu
design-engineering.princeton.edu
dev-web-degacc.edu.help
bi.operaphila.org
bi.capacityinteractive.com
dashboard.calperformances.org
secure-uswe2-1.tessituranetwork.com
dev-web-degacc.edu.help
securessl-pst1.tessituranetworkhost.com
bi.operaphila.org
gws-uat.earthjustice.org
bi.operaphila.org
bi.operaphila.org
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
bi.operaphila.org
hub.meed.com
dev.wellness.yale.edu
secure-uswe2-1.tessituranetwork.com
info-dev.calperformances.org
good.gsm.cornell.edu
secure-uswe2-1.tessituranetwork.com
dev.embody.yale.edu
secure-uswe2-1.tessituranetwork.com
expeditions.sandiegozoo.org
club.kjzz.org
secure-uswe2-1.tessituranetwork.com
dev.wellness.yale.edu
5735834829455360-fe3.pantheonsite.io
secure-uswe2-1.tessituranetwork.com
host2.openminds.com
test.calperformances.org
5649684605435904-fe1.pantheonsite.io
secure-uswe2-1.tessituranetwork.com
calperformances.org
secure-uswe2-1.tessituranetwork.com
calperformances.org
secure-uswe2-1.tessituranetwork.com
connect.iadb.org
bi.operaphila.org
secure-uswe2-1.tessituranetwork.com
securessl-pst1.tessituranetworkhost.com
calperformances.org
bi.operaphila.org
acadmintest.cuofco.org
secure-uswe2-1.tessituranetwork.com
5735834829455360-fe3.pantheonsite.io
bi.operaphila.org
securessl-pst1.tessituranetworkhost.com
test.calperformances.org
covid.usmle.org
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
secure-uswe2-1.tessituranetwork.com
securessl-pst1.tessituranetworkhost.com
calperformances.org
cms.legacy.com
secure-uswe2-1.tessituranetwork.com
dev.dhsri.yale.edu
d7.cmc.edu
clc.shawnee.edu
bi.operaphila.org
industri40.ida.dk
info-dev.calperformances.org
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
d7.cmc.edu
bi.operaphila.org
secure-uswe2-1.tessituranetwork.com
csc.arizona.edu
securessl-pst1.tessituranetworkhost.com
5735834829455360-fe3.pantheonsite.io
secure-uswe2-1.tessituranetwork.com
bi.operaphila.org
csc.arizona.edu
secure-uswe2-1.tessituranetwork.com
csc.arizona.edu
dev.dhsri.yale.edu
secure-uswe2-1.tessituranetwork.com
bi.operaphila.org
bi.operaphila.org
csc.arizona.edu
calperformances.org
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
acadmintest.cuofco.org
securessl-pst1.tessituranetworkhost.com
secure-uswe2-1.tessituranetwork.com
secure3.calperformances.org
securessl-pst1.tessituranetworkhost.com
connect.iadb.org
bi.operaphila.org
dev-lp-jhubsph.edu.help
citeak.multidevcom.uaf.edu
bi.operaphila.org
industri40.ida.dk
secure-uswe2-1.tessituranetwork.com
coins.rutgers.edu
design-engineering.princeton.edu
dev-web-degacc.edu.help
bi.operaphila.org
bi.capacityinteractive.com
dashboard.calperformances.org
secure-uswe2-1.tessituranetwork.com
dev-web-degacc.edu.help
securessl-pst1.tessituranetworkhost.com
bi.operaphila.org
gws-uat.earthjustice.org
bi.operaphila.org
bi.operaphila.org
Certificate
The complete raw certificate details for calperformances.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIQUw4Vw4c7yBB7k4fmmQ2TmDANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0xNTAxMTIwMDAwMDBaFw0xODAxMTEy MzU5NTlaMIHSMQswCQYDVQQGEwJVUzESMBAGA1UEERMJOTQ3MjAxNTAwMRMwEQYD VQQIEwpDYWxpZm9ybmlhMREwDwYDVQQHEwhCZXJrZWxleTEiMCAGA1UECRQZMjAw IENhbGlmb3JuaWEgSGFsbCAjMTUwMDEtMCsGA1UEChMkVW5pdmVyc2l0eSBvZiBD YWxpZm9ybmlhIGF0IEJlcmtlbGV5MRYwFAYDVQQLEw1JU1QtQ2FsTmV0SWRNMRww GgYDVQQDExNjYWxwZXJmb3JtYW5jZXMub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA5wTRsU464BNAK+5OlI+w6Iy9VeNCoZIoywktdvInlH8h3QqD 4qVskuRyxdapOQ76VkVKfiN8UG8HNj9expyqCl8fvbAsEbRO34cgmIwV/ftbH0Yl +UWefTudaQBw1rqxGz7/l4q1NtxJ0V5/2sZo5Wlbi5873fCZCO79XSL+fiOdGTGj 1A8zlunIcneRU4m9P7ErlfiVD/IkHmOmjleobhyBmfRm9pReEcFOl5T8nGk6g1Ck 0RxLbBIE86RtO2jBrHHnE3YvV4r7rbvOjj4zNaKLNebZV9EmzfpDIiYFkWroUv1j pyxxqU/EgZKdmrdgl/dUiYENlo6UqB4hfgIR0QIDAQABo4IBxzCCAcMwHwYDVR0j BBgwFoAUHgWjd49sluJbh0umtIascQAM5zgwHQYDVR0OBBYEFEM36LKuh5RuKfa4 NKOJHS7yDOEnMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMB ATBCMEAGCCsGAQUFBwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9y ZXBvc2l0b3J5L2Nwc19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1 hjNodHRwOi8vY3JsLmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJD QS5jcmwwdQYIKwYBBQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVz ZXJ0cnVzdC5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcw AYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTAeBgNVHREEFzAVghNjYWxwZXJm b3JtYW5jZXMub3JnMA0GCSqGSIb3DQEBCwUAA4IBAQBbzawGpnaVCIZdzXsig47q B5JjhSZDsruw1MRkozZyXm7XNHAocLEwGTS9Me94bttrLmb+6wcEpzz4Gpdp0t57 LhVzf36/vetViK4km34TnbXRY+C0nnWSVKeUKItuXWENJzySLF+taSeNk5mMt4+4 y0XonHJb0v45iywIRv1c+MtCcTNb8tJtE9iXpfVRsMXcuD5XS1raQuMNxE7F29SI FPvZTClqigTmWhDaFXSy3w9rpdoEjeD2zrt7gQViuDzohlBOjzBcXqbzL99RdeTI Bayx8ljErWC3FgAPbvtq6oGdf9Szc0cEWs1J+7MUOEFjbm9hSNj85Jcnpj4ZiTUl -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5wTRsU464BNAK+5OlI+w 6Iy9VeNCoZIoywktdvInlH8h3QqD4qVskuRyxdapOQ76VkVKfiN8UG8HNj9expyq Cl8fvbAsEbRO34cgmIwV/ftbH0Yl+UWefTudaQBw1rqxGz7/l4q1NtxJ0V5/2sZo 5Wlbi5873fCZCO79XSL+fiOdGTGj1A8zlunIcneRU4m9P7ErlfiVD/IkHmOmjleo bhyBmfRm9pReEcFOl5T8nGk6g1Ck0RxLbBIE86RtO2jBrHHnE3YvV4r7rbvOjj4z NaKLNebZV9EmzfpDIiYFkWroUv1jpyxxqU/EgZKdmrdgl/dUiYENlo6UqB4hfgIR 0QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 110399057228113619731028083405495309208 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '947201500' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berkeley' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '200 California Hall #1500' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of California at Berkeley' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IST-CalNetIdM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'calperformances.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29163424839717314569391084496908026022798253674327392039259397613509686326188410365403687504730573899657162729969921768813762584196938653825934554931131331383241110572792682556945344864111533494799155307241634030341993643588597921160049109418384580301178861994244157809718862569171219678909192155907488203431426469005009629371127124433053655032065663712708110147740645649944730731394643102150429970503303663464290686228244322886642180563511952077572977120819446890866930464479802824209008113720981191308491716124088555157475746509394979771440193636578023217268556121816588799294843300529727973282177142077077927891409 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4337e8b2ae87946e29f6b834a3891d2ef20ce127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'calperformances.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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