vpn.american.edu
- American University -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 84:49:fa:96:f0:6b:87:ac:30:29:7f:b5:bc:9d:45:f2 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
American University
Organization:
American University
Organization unit: Office of Information Technology
Organization unit: Office of Information Technology
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 84:49:fa:96:f0:6b:87:ac:30:29:7f:b5:bc:9d:45:f2Serial Number (int): 175842215675313625813049079335636256242
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ff:a4:d5:5a:f6:f2:71:47:be:29:73:72:2b:4b:94:95:7b:23:89:cd
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): c5:fe:51:88:a4:c5:1c:41:3a:81:18:67:8e:d1:1f:3d:a8:aa:e3:f7
Fingerprint (sha256): 0c:12:85:dd:ee:93:32:8e:8b:4c:8e:8c:0f:26:5b:02:c4:41:01:0d:2f:00:fd:83:bd:d6:b3:05:1e:86:9c:01
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate vpn.american.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.american.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.american.edu
Other certificates including the domain name american.edu
(limited to 100 certificates)
titaniumcc.american.edu
2factor.american.edu
dra.american.edu
digitalcommons.wcl.american.edu
dra.american.edu
statcrunch.american.edu
biapp-qa.american.edu
mobileapp.american.edu
landing.online.american.edu
biapp-qa.american.edu
research.american.edu
intern.blogs.american.edu
dra.american.edu
wwwredirects.american.edu
au.blogs.american.edu
domino.american.edu
jobs.american.edu
programs.online.american.edu
papercut-test.american.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
subversion.american.edu
alumni.blogs.american.edu
goed.american.edu
offcampushousing.fau.edu
recfit.blogs.american.edu
spdev-sivakumar.american.edu
onlinebusiness.american.edu
wipar.blogs.american.edu
apply.soeonline.american.edu
recruiterprodapp.american.edu
listserv.american.edu
n002.offcampuspartners.com
www.american.edu
americanmag.blogs.american.edu
auinfra.american.edu
offcampushousing.fau.edu
clockwork.american.edu
vcsandbox.american.edu
spam.american.edu
offcampushousing.fau.edu
webwork.american.edu
calendar.library.american.edu
*.american.edu
openbooks.american.edu
fsmigrateorch.american.edu
privacybasics.american.edu
online-orientation.american.edu
niwaplibrary.wcl.american.edu
aumail7.american.edu
informer.american.edu
us-east-1-san3.blackboard.com
socdeansintern.blogs.american.edu
keysystems.american.edu
informerbidev.american.edu
aumail3.american.edu
blogs.american.edu
*.ironline.american.edu
library.wcl.american.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
www.american.edu
auaccess.american.edu
desigoems.american.edu
bbts.american.edu
*.ironline.american.edu
spweb201.american.edu
vpn.american.edu
careeradvisor.blogs.american.edu
soeonline.american.edu
rctugtst19sqlag.american.edu
incircle.alumni.american.edu
ems.cas.american.edu
webnow.american.edu
cloudfront.american.edu
sccmwks.american.edu
landing.online.american.edu
mediaspace.american.edu
ufund.american.edu
n002.offcampuspartners.com
sccmwksdp1.american.edu
aumail6.american.edu
ironline.american.edu
offcampushousing.fau.edu
digitalcommons.wcl.american.edu
jamfproxy.american.edu
iisredir.american.edu
digitalcommons.wcl.american.edu
colprdapi.american.edu
*.onlinelaw.wcl.american.edu
iisredir.american.edu
2factor.american.edu
intern.blogs.american.edu
offcampushousing.fau.edu
online.american.edu
auadfs.american.edu
colprdssweb1.american.edu
offcampushousing.fau.edu
splunkprdjs.american.edu
*.ironline.american.edu
2factor.american.edu
dra.american.edu
digitalcommons.wcl.american.edu
dra.american.edu
statcrunch.american.edu
biapp-qa.american.edu
mobileapp.american.edu
landing.online.american.edu
biapp-qa.american.edu
research.american.edu
intern.blogs.american.edu
dra.american.edu
wwwredirects.american.edu
au.blogs.american.edu
domino.american.edu
jobs.american.edu
programs.online.american.edu
papercut-test.american.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
subversion.american.edu
alumni.blogs.american.edu
goed.american.edu
offcampushousing.fau.edu
recfit.blogs.american.edu
spdev-sivakumar.american.edu
onlinebusiness.american.edu
wipar.blogs.american.edu
apply.soeonline.american.edu
recruiterprodapp.american.edu
listserv.american.edu
n002.offcampuspartners.com
www.american.edu
americanmag.blogs.american.edu
auinfra.american.edu
offcampushousing.fau.edu
clockwork.american.edu
vcsandbox.american.edu
spam.american.edu
offcampushousing.fau.edu
webwork.american.edu
calendar.library.american.edu
*.american.edu
openbooks.american.edu
fsmigrateorch.american.edu
privacybasics.american.edu
online-orientation.american.edu
niwaplibrary.wcl.american.edu
aumail7.american.edu
informer.american.edu
us-east-1-san3.blackboard.com
socdeansintern.blogs.american.edu
keysystems.american.edu
informerbidev.american.edu
aumail3.american.edu
blogs.american.edu
*.ironline.american.edu
library.wcl.american.edu
n002.offcampuspartners.com
n002.offcampuspartners.com
www.american.edu
auaccess.american.edu
desigoems.american.edu
bbts.american.edu
*.ironline.american.edu
spweb201.american.edu
vpn.american.edu
careeradvisor.blogs.american.edu
soeonline.american.edu
rctugtst19sqlag.american.edu
incircle.alumni.american.edu
ems.cas.american.edu
webnow.american.edu
cloudfront.american.edu
sccmwks.american.edu
landing.online.american.edu
mediaspace.american.edu
ufund.american.edu
n002.offcampuspartners.com
sccmwksdp1.american.edu
aumail6.american.edu
ironline.american.edu
offcampushousing.fau.edu
digitalcommons.wcl.american.edu
jamfproxy.american.edu
iisredir.american.edu
digitalcommons.wcl.american.edu
colprdapi.american.edu
*.onlinelaw.wcl.american.edu
iisredir.american.edu
2factor.american.edu
intern.blogs.american.edu
offcampushousing.fau.edu
online.american.edu
auadfs.american.edu
colprdssweb1.american.edu
offcampushousing.fau.edu
splunkprdjs.american.edu
*.ironline.american.edu
Certificate
The complete raw certificate details for vpn.american.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIRAIRJ+pbwa4esMCl/tbydRfIwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMjExMTEyMDAwMDAwWhcNMjIxMjEz MjM1OTU5WjCBpTELMAkGA1UEBhMCVVMxHTAbBgNVBAgTFERpc3RyaWN0IG9mIENv bHVtYmlhMRMwEQYDVQQHEwpXYXNoaW5ndG9uMRwwGgYDVQQKExNBbWVyaWNhbiBV bml2ZXJzaXR5MSkwJwYDVQQLEyBPZmZpY2Ugb2YgSW5mb3JtYXRpb24gVGVjaG5v bG9neTEZMBcGA1UEAxMQdnBuLmFtZXJpY2FuLmVkdTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMf8u4HvjYNDP/fXTMWuYewWBwY2TnIuXNp9zK15sRO0 fj/cdnMVwII1qZA0VmVvlyUd43Mk/VN2lHQIwSqtLSGLU/VRrtYAhYcXUGNJNhQm 7bPS+EiwgLU4HXjDUFxkX7nL2HYMquf3/j5ap+Q4zlML9SFIN0V9/0KJYKAGsIcN H9uPicuBKAWW0OTNhY/Wln4lI/Edjf3cqVRqFs71RN3Dx1SkVhWZlTEivPWjLfQb kA/Oip8uGNfsoem1RGYMj/Zywv+JZx33Jh0jSnL9aPM/MrpD8ugsXR/JIq7jr4WQ wn8oN2xFkRj6QyAh2NYJcpIBEY8JhwH7ojXv6KXAxLUCAwEAAaOCAdkwggHVMB8G A1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEADOc4MB0GA1UdDgQWBBT/pNVa9vJx R74pc3IrS5SVeyOJzTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwZwYDVR0gBGAwXjBSBgwrBgEEAa4j AQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6Ly93d3cuaW5jb21tb24ub3JnL2Nl cnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAIBgZngQwBAgIwRAYDVR0fBD0wOzA5 oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1yc2Eub3JnL0luQ29tbW9uUlNBU2Vy dmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+BggrBgEFBQcwAoYyaHR0cDovL2Ny dC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNBU2VydmVyQ0FfMi5jcnQwJQYIKwYB BQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wEwYKKwYBBAHWeQIEAwEB /wQCBQAwGwYDVR0RBBQwEoIQdnBuLmFtZXJpY2FuLmVkdTANBgkqhkiG9w0BAQsF AAOCAQEAffk8bo3bi8TozELnFOMN9f3vneYwBIk7lJNiw8MqlFHvKK9zB+O9HxTb GiUMcHefkoKPD4d1RZb2jCkC1exskdjFODSydC1V2jVLUiNETbrKsL2fz0PLKIEn ak4Otvz3astZs5WU/DaNXNMOVuOIfP08wBhFHLplIb1Z8+9lHoBCy5l6SHCDnX9B mG1qTo2mVdgI35SnQ0LdgfOtMoA8pa5hThOkOBINLmCuqFvZTZm9+It8ADVIeGSm qIuRBlst5TVQcAWhQNna664359LU6nrZUjZnqfnuXe2JVJXhjjwmHBA78XQhDWJQ ODe/kHIjrs23OQ1Ms0jo13u6TJOeLA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/y7ge+Ng0M/99dMxa5h 7BYHBjZOci5c2n3MrXmxE7R+P9x2cxXAgjWpkDRWZW+XJR3jcyT9U3aUdAjBKq0t IYtT9VGu1gCFhxdQY0k2FCbts9L4SLCAtTgdeMNQXGRfucvYdgyq5/f+Plqn5DjO Uwv1IUg3RX3/QolgoAawhw0f24+Jy4EoBZbQ5M2Fj9aWfiUj8R2N/dypVGoWzvVE 3cPHVKRWFZmVMSK89aMt9BuQD86Kny4Y1+yh6bVEZgyP9nLC/4lnHfcmHSNKcv1o 8z8yukPy6CxdH8kiruOvhZDCfyg3bEWRGPpDICHY1glykgERjwmHAfuiNe/opcDE tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 175842215675313625813049079335636256242 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vpn.american.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25246049704949567839858918972476689886507042371812919544507502944878412339018614599399290030701956052329519568904269961801712895082208024897553797724819448149274953123752246985065597938338216902468356029717868591597565739498202703583053611536427005019686105161652860672265490797979122171864380013921062188256112119597208064792344700613537549271079225969471908030182438390797762608010573537625306920485095690616238529365112124879278934212414796033207339406824000304242660871176851420715538180650075630168806345784238000696358366220631174703859833555518861795643225387431836500478357605153597409061146923628987389363381 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ffa4d55af6f27147be2973722b4b94957b2389cd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.american.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007df93c6e8ddb8bc4e8cc42e714e30df5fdef9de63004893b949362c3c32a9451ef28af7307e3bd1f14db1a250c70779f92828f0f87754596f68c2902d5ec6c91d8c53834b2742d55da354b5223444dbacab0bd9fcf43cb2881276a4e0eb6fcf76acb59b39594fc368d5cd30e56e3887cfd3cc018451cba6521bd59f3ef651e8042cb997a4870839d7f41986d6a4e8da655d808df94a74342dd81f3ad32803ca5ae614e13a438120d2e60aea85bd94d99bdf88b7c0035487864a6a88b91065b2de535507005a140d9daebae37e7d2d4ea7ad9523667a9f9ee5ded895495e18e3c261c103bf174210d62503837bf907223aecdb7390d4cb348e8d77bba4c939e2c