space-dev.broadinstitute.org
- The Broad Institute of MIT and Harvard -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number aa:43:a1:61:9e:3a:25:b6:a7:95:dd:2d:d7:b6:d2:76 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Broad Institute of MIT and Harvard
Organization:
The Broad Institute of MIT and Harvard
Organization unit: BITS
Organization unit: BITS
Address:
415 Main St.
Postal code: 02142
State / Province: MA
Locality: Cambridge
Country: US
Postal code: 02142
State / Province: MA
Locality: Cambridge
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): aa:43:a1:61:9e:3a:25:b6:a7:95:dd:2d:d7:b6:d2:76Serial Number (int): 226319916375004410993591003690422424182
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 5b:9b:6b:4a:68:c0:63:19:07:90:69:d3:d1:6e:73:6a:8a:33:ee:0d
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 3c:22:81:d9:76:59:9a:d5:ad:ef:47:4d:61:7c:10:fb:79:89:6b:52
Fingerprint (sha256): 0d:02:6d:97:7e:34:9c:11:4b:65:24:94:4d:98:c1:1b:5b:c3:56:23:9d:2e:5b:d4:d9:ce:2c:ab:da:ed:8b:b3
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate space-dev.broadinstitute.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for space-dev.broadinstitute.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
space-dev.broadinstitute.org
Other certificates including the domain name broadinstitute.org
(limited to 100 certificates)
*.dsde-staging.broadinstitute.org
gpmocha01.broadinstitute.org
suffix.broadinstitute.org
duos.broadinstitute.org
vdesktop.broadinstitute.org
mercury.broadinstitute.org
risteys.broadinstitute.org
abbvie.ukbb.broadinstitute.org
bard.broadinstitute.org
*.dsde-prod.broadinstitute.org
portal.firecloud.org
itdev.broadinstitute.org
disclosure-dev.broadinstitute.org
software.broadinstitute.org
esrs-v3.broadinstitute.org
pan.ukbb.broadinstitute.org
cromwell.gp-cromwell-dev.broadinstitute.org
addrtest.broadinstitute.org
gpdevconfluence.broadinstitute.org
weblb-dev.broadinstitute.org
*.mint-stress.broadinstitute.org
omero.broadinstitute.org
secexplorer.dsp-appsec.broadinstitute.org
*.thescholr.com
*.dsde-prod.broadinstitute.org
radon.broadinstitute.org
*.thescholr.com
*.thescholr.com
mercurydev.broadinstitute.org
cda.cda-dev.broadinstitute.org
internal.ukbb.broadinstitute.org
*.thescholr.com
intranet.broadinstitute.org
gpbroad.broadinstitute.org
giving.broadinstitute.org
tufin.broadinstitute.org
github.broadinstitute.org
identity.broadinstitute.org
tufin.broadinstitute.org
coeus.broadinstitute.org
jujubes.broadinstitute.org
coolidge.broadinstitute.org
duos.broadinstitute.org
bod.broadinstitute.org
*.mint-dev.broadinstitute.org
ora-oemrep.broadinstitute.org
broadies.broadinstitute.org
*.dsde-prod.broadinstitute.org
su2c.broadinstitute.org
zebrafish.dsde-dev.broadinstitute.org
*.d8.theopenscholar.com
ibd-genetics.broadinstitute.org
identity.broadinstitute.org
1sum-701-n1-dwdm-415m.broadinstitute.org
lof.curation.broadinstitute.org
stash.broadinstitute.org
enigma.broadinstitute.org
jade-6.datarepo-integration.broadinstitute.org
sendit.broadinstitute.org
*.thescholr.com
cellstrainer.broadinstitute.org
*.d8.theopenscholar.com
space-dev.broadinstitute.org
bit-qa.broadinstitute.org
agora.dsde-prod.broadinstitute.org
320c-2102-c5-dwdm-415m.broadinstitute.org
bitstore.broadinstitute.org
covid-19-sequencing.broadinstitute.org
beehive.dsp-devops.broadinstitute.org
genomics.broadinstitute.org
confluence.broadinstitute.org
cloudaccounts-dev.broadinstitute.org
www.broadinstitute.org
slims.broadinstitute.org
crowdldap.broadinstitute.org
hscgp.broadinstitute.org
dpa.broadinstitute.org
transfer.broadinstitute.org
solwind.broadinstitute.org
duos.dsp-duos-prod.broadinstitute.org
www.broadinstitute.org
alkesgroup.broadinstitute.org
transfer.broadinstitute.org
gphub.broadinstitute.org
www.broadinstitute.org
firecloud.dsde-alpha.broadinstitute.org
support.terra.bio
firecloud.dsde-staging.broadinstitute.org
ladderstocures.broadinstitute.org
dotmatics-dev.broadinstitute.org
papers-dev.broadinstitute.org
slims-qa.broadinstitute.org
consent.dsde-dev.broadinstitute.org
unity.broadinstitute.org
intranet.broadinstitute.org
help.broadinstitute.org
idp.broadinstitute.org
*.thescholr.com
gatkforums.broadinstitute.org
healthquest.broadinstitute.org
gpmocha01.broadinstitute.org
suffix.broadinstitute.org
duos.broadinstitute.org
vdesktop.broadinstitute.org
mercury.broadinstitute.org
risteys.broadinstitute.org
abbvie.ukbb.broadinstitute.org
bard.broadinstitute.org
*.dsde-prod.broadinstitute.org
portal.firecloud.org
itdev.broadinstitute.org
disclosure-dev.broadinstitute.org
software.broadinstitute.org
esrs-v3.broadinstitute.org
pan.ukbb.broadinstitute.org
cromwell.gp-cromwell-dev.broadinstitute.org
addrtest.broadinstitute.org
gpdevconfluence.broadinstitute.org
weblb-dev.broadinstitute.org
*.mint-stress.broadinstitute.org
omero.broadinstitute.org
secexplorer.dsp-appsec.broadinstitute.org
*.thescholr.com
*.dsde-prod.broadinstitute.org
radon.broadinstitute.org
*.thescholr.com
*.thescholr.com
mercurydev.broadinstitute.org
cda.cda-dev.broadinstitute.org
internal.ukbb.broadinstitute.org
*.thescholr.com
intranet.broadinstitute.org
gpbroad.broadinstitute.org
giving.broadinstitute.org
tufin.broadinstitute.org
github.broadinstitute.org
identity.broadinstitute.org
tufin.broadinstitute.org
coeus.broadinstitute.org
jujubes.broadinstitute.org
coolidge.broadinstitute.org
duos.broadinstitute.org
bod.broadinstitute.org
*.mint-dev.broadinstitute.org
ora-oemrep.broadinstitute.org
broadies.broadinstitute.org
*.dsde-prod.broadinstitute.org
su2c.broadinstitute.org
zebrafish.dsde-dev.broadinstitute.org
*.d8.theopenscholar.com
ibd-genetics.broadinstitute.org
identity.broadinstitute.org
1sum-701-n1-dwdm-415m.broadinstitute.org
lof.curation.broadinstitute.org
stash.broadinstitute.org
enigma.broadinstitute.org
jade-6.datarepo-integration.broadinstitute.org
sendit.broadinstitute.org
*.thescholr.com
cellstrainer.broadinstitute.org
*.d8.theopenscholar.com
space-dev.broadinstitute.org
bit-qa.broadinstitute.org
agora.dsde-prod.broadinstitute.org
320c-2102-c5-dwdm-415m.broadinstitute.org
bitstore.broadinstitute.org
covid-19-sequencing.broadinstitute.org
beehive.dsp-devops.broadinstitute.org
genomics.broadinstitute.org
confluence.broadinstitute.org
cloudaccounts-dev.broadinstitute.org
www.broadinstitute.org
slims.broadinstitute.org
crowdldap.broadinstitute.org
hscgp.broadinstitute.org
dpa.broadinstitute.org
transfer.broadinstitute.org
solwind.broadinstitute.org
duos.dsp-duos-prod.broadinstitute.org
www.broadinstitute.org
alkesgroup.broadinstitute.org
transfer.broadinstitute.org
gphub.broadinstitute.org
www.broadinstitute.org
firecloud.dsde-alpha.broadinstitute.org
support.terra.bio
firecloud.dsde-staging.broadinstitute.org
ladderstocures.broadinstitute.org
dotmatics-dev.broadinstitute.org
papers-dev.broadinstitute.org
slims-qa.broadinstitute.org
consent.dsde-dev.broadinstitute.org
unity.broadinstitute.org
intranet.broadinstitute.org
help.broadinstitute.org
idp.broadinstitute.org
*.thescholr.com
gatkforums.broadinstitute.org
healthquest.broadinstitute.org
Certificate
The complete raw certificate details for space-dev.broadinstitute.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIRAKpDoWGeOiW2p5XdLde20nYwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTgxMDI2MDAwMDAwWhcNMjAxMDI1 MjM1OTU5WjCBvDELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTAyMTQyMQswCQYDVQQI EwJNQTESMBAGA1UEBxMJQ2FtYnJpZGdlMRUwEwYDVQQJEww0MTUgTWFpbiBTdC4x LzAtBgNVBAoTJlRoZSBCcm9hZCBJbnN0aXR1dGUgb2YgTUlUIGFuZCBIYXJ2YXJk MQ0wCwYDVQQLEwRCSVRTMSUwIwYDVQQDExxzcGFjZS1kZXYuYnJvYWRpbnN0aXR1 dGUub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kAtTQwS0jGm cg6eRgNnXAObvJQGacPnjaHfVD6v1P7W8w8j3KqH5DF7X18rM7bMY17EpiI0gCXj mUEViTqBt2iqTTrEPex94bp8BDORJ/MF2yqQADTV1nvu27TM+9jBpPJjwu9L57J3 TjGKTH6TGjlQuaW/0V3q8a3KX2LlrHEwTcZk2E+Jlzv+r83dahmJcIcfrNLngWUQ Hsz0gFz6bn4xKQoaLXXp5c+r44YAmdz0uj8QBswTMXawwnM9G/rEpBtXHuureyz0 TfYLZPvTnNebJ8+9HmsEXZv8vyiagHcHe7hp+inupTfyHsjFUBTdSaSBVXPVLEnf cQvyYPF16QIDAQABo4IB5TCCAeEwHwYDVR0jBBgwFoAUHgWjd49sluJbh0umtIas cQAM5zgwHQYDVR0OBBYEFFuba0powGMZB5Bp09Fuc2qKM+4NMA4GA1UdDwEB/wQE AwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMBATBCMEAGCCsGAQUFBwIBFjRodHRw czovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9yZXBvc2l0b3J5L2Nwc19zc2wucGRm MAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1hjNodHRwOi8vY3JsLmluY29tbW9u LXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJDQS5jcmwwdQYIKwYBBQUHAQEEaTBn MD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vSW5Db21tb25S U0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRy dXN0LmNvbTAnBgNVHREEIDAeghxzcGFjZS1kZXYuYnJvYWRpbnN0aXR1dGUub3Jn MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAHQsUmTKvl EHpU0rKVUsltJ0hxE2IW/elKg4C80uTi6l1Cy2nk60GbA2KCHnBhrzpVoGaHhwAx fCLXQlvu+Qv+sNp9q++sBJVyH/IjsjD5toydGV52WZvH1QkowC88N1mtKQU5VTBs gxVZntfJpyg2wQW2n+blWmIbaLEPIVT021lgeg1fgluKk8x0W3nqRLJEIpptVQOq YdwUQqWICnaLqMvkOcTXjLZ/xA/uBkgUrQ9FyMDqiVWhxHiFvumriAACkvEO9AaG xwj/df86C0zn4jFY414zGaQ/wqjg1yNVT3Yw4N2IpZr8qu5glGWNwifZJyacKMJN jCmCzO5ZBzb6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kAtTQwS0jGmcg6eRgNn XAObvJQGacPnjaHfVD6v1P7W8w8j3KqH5DF7X18rM7bMY17EpiI0gCXjmUEViTqB t2iqTTrEPex94bp8BDORJ/MF2yqQADTV1nvu27TM+9jBpPJjwu9L57J3TjGKTH6T GjlQuaW/0V3q8a3KX2LlrHEwTcZk2E+Jlzv+r83dahmJcIcfrNLngWUQHsz0gFz6 bn4xKQoaLXXp5c+r44YAmdz0uj8QBswTMXawwnM9G/rEpBtXHuureyz0TfYLZPvT nNebJ8+9HmsEXZv8vyiagHcHe7hp+inupTfyHsjFUBTdSaSBVXPVLEnfcQvyYPF1 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 226319916375004410993591003690422424182 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '02142' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cambridge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '415 Main St.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Broad Institute of MIT and Harvard' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BITS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'space-dev.broadinstitute.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29571410198997095719658758652970393505064036035575013151159781851274099264322369286662832494768902348165919141468042875376961105056173958802729390069359632569436583544182443938519079156471899804296213729211575120920870259962392549008060812034683340166031123686828755400871366482696210893398390736138868781277000626690234677420992741871141511226783825309021802320980955132709522479869820848607578874476980252036666296184408094009332656045697507040703375967892934238987151788573923545289426566223242247149169371910031077101898257800903301260099831464844676961152681719303382082786067840176247947137668646612252897670633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b9b6b4a68c06319079069d3d16e736a8a33ee0d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'space-dev.broadinstitute.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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