saip2.unh.edu
- University System of New Hampshire -
Issued by InCommon RSA Server CA 2
About this certificate
This digital certificate with serial number 41:e7:cb:64:a0:41:62:fe:cd:4f:32:4e:c9:6c:f6:5b was issued on by Internet2.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
University System of New Hampshire
Organization:
University System of New Hampshire
State / Province:
New Hampshire
Country: US
Country: US
Internet2
Organization:
Internet2
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 41:e7:cb:64:a0:41:62:fe:cd:4f:32:4e:c9:6c:f6:5bSerial Number (int): 87603365601903518878340400671359825499
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: f6:14:93:48:f9:3f:5e:26:53:db:68:0d:1c:f2:34:24:c2:4e:f8:2e
AuthorityKeyId: ef:4c:00:92:a6:fb:76:2e:5e:95:e2:c9:5f:87:1b:19:d5:4d:e2:d9
Fingerprint (sha1): 5d:b3:be:20:c4:1a:4f:f9:e2:a9:98:f8:0e:f3:ce:38:8a:2a:d4:21
Fingerprint (sha256): 0f:b0:b1:70:63:e8:4f:ef:fc:36:a2:09:6e:7a:92:00:27:99:28:ab:ed:79:77:01:f3:e0:21:90:ad:21:a8:0f
Issuing Certificate URL: http://crt.sectigo.com/InCommonRSAServerCA2.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/InCommonRSAServerCA2.crl
Check the revocation status for certificate saip2.unh.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saip2.unh.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saip2.unh.edu
Other certificates including the domain name unh.edu
(limited to 100 certificates)
oak.cs.unh.edu
law.unh.edu
graddevserver.unh.edu
prominence.unh.edu
dpdkdashboard.iol.unh.edu
fammob-test1.unh.edu
media.unh.edu
zeke.sr.unh.edu
leaf.sr.unh.edu
klima.sr.unh.edu
zeke.sr.unh.edu
atcirculation.unh.edu
q.sr.unh.edu
nicldb.unh.edu
ddc.unh.edu
cipher2.unh.edu
wwdrii.sr.unh.edu
*.libproxy.unh.edu
webapps.unh.edu
hcgs.unh.edu
library.unh.edu
apply.unh.edu
wintermute.sr.unh.edu
litwebsitedev.unh.edu
webauthdev.unh.edu
jointagencyvm.sr.unh.edu
tcpalo4-1-mgmt.unh.edu
idmdev.unh.edu
collegiatelink.studentvoice.com
at-training.unh.edu
phenocam.sr.unh.edu
mylogin.law.unh.edu
pacapp.cs.unh.edu
operations.onecampus.com
sirs-actutest.sr.unh.edu
kato.unh.edu
foss.unh.edu
owl.sr.unh.edu
applecore.sr.unh.edu
networking.unh.edu
place.sr.unh.edu
clusters.unh.edu
collegiatelink.studentvoice.com
ea-poe-cert.iol.unh.edu
icebridge.sr.unh.edu
fishercat.sr.unh.edu
rcc.sr.unh.edu
blackstar.sr.unh.edu
unity.unh.edu
idmdev.unh.edu
herculesdome.org
*.ccom.unh.edu
webmail.eos.sr.unh.edu
wsdev.unh.edu
posters.unh.edu
ddc.sr.unh.edu
owl.sr.unh.edu
scholars.unh.edu
bootcamp.unh.edu
nhihpp-backups.sr.unh.edu
appropriations.unh.edu
waterviz.org
nuclear.unh.edu
law.unh.edu
*.libproxy.unh.edu
posters.unh.edu
bootcamp.unh.edu
clockwork.unh.edu
alumni.law.unh.edu
*.iol.unh.edu
admissions.unh.edu
apexdev.unh.edu
marco2.unh.edu
admissions.unh.edu
dawn.sr.unh.edu
www.iol.unh.edu
bugzilla.sr.unh.edu
www.library.unh.edu
www.transfer.unh.edu
ww.vpn.unh.edu
unhconnect.unh.edu
dawn.sr.unh.edu
hastings.unh.edu
akamai-san192.exacttarget.com
mycourses.unh.edu
enterprise.vpn.unh.edu
prc.unh.edu
gradschool.unh.edu
contracts.unh.edu
housingonline.unh.edu
co-gen-gw.unh.edu
lists.unh.edu
ipmall.info
ciceet.unh.edu
saip2.unh.edu
exchange.unh.edu
blackbaudfrogprod.unh.edu
leaf.sr.unh.edu
connect.vpn.unh.edu
www.unh.edu
law.unh.edu
graddevserver.unh.edu
prominence.unh.edu
dpdkdashboard.iol.unh.edu
fammob-test1.unh.edu
media.unh.edu
zeke.sr.unh.edu
leaf.sr.unh.edu
klima.sr.unh.edu
zeke.sr.unh.edu
atcirculation.unh.edu
q.sr.unh.edu
nicldb.unh.edu
ddc.unh.edu
cipher2.unh.edu
wwdrii.sr.unh.edu
*.libproxy.unh.edu
webapps.unh.edu
hcgs.unh.edu
library.unh.edu
apply.unh.edu
wintermute.sr.unh.edu
litwebsitedev.unh.edu
webauthdev.unh.edu
jointagencyvm.sr.unh.edu
tcpalo4-1-mgmt.unh.edu
idmdev.unh.edu
collegiatelink.studentvoice.com
at-training.unh.edu
phenocam.sr.unh.edu
mylogin.law.unh.edu
pacapp.cs.unh.edu
operations.onecampus.com
sirs-actutest.sr.unh.edu
kato.unh.edu
foss.unh.edu
owl.sr.unh.edu
applecore.sr.unh.edu
networking.unh.edu
place.sr.unh.edu
clusters.unh.edu
collegiatelink.studentvoice.com
ea-poe-cert.iol.unh.edu
icebridge.sr.unh.edu
fishercat.sr.unh.edu
rcc.sr.unh.edu
blackstar.sr.unh.edu
unity.unh.edu
idmdev.unh.edu
herculesdome.org
*.ccom.unh.edu
webmail.eos.sr.unh.edu
wsdev.unh.edu
posters.unh.edu
ddc.sr.unh.edu
owl.sr.unh.edu
scholars.unh.edu
bootcamp.unh.edu
nhihpp-backups.sr.unh.edu
appropriations.unh.edu
waterviz.org
nuclear.unh.edu
law.unh.edu
*.libproxy.unh.edu
posters.unh.edu
bootcamp.unh.edu
clockwork.unh.edu
alumni.law.unh.edu
*.iol.unh.edu
admissions.unh.edu
apexdev.unh.edu
marco2.unh.edu
admissions.unh.edu
dawn.sr.unh.edu
www.iol.unh.edu
bugzilla.sr.unh.edu
www.library.unh.edu
www.transfer.unh.edu
ww.vpn.unh.edu
unhconnect.unh.edu
dawn.sr.unh.edu
hastings.unh.edu
akamai-san192.exacttarget.com
mycourses.unh.edu
enterprise.vpn.unh.edu
prc.unh.edu
gradschool.unh.edu
contracts.unh.edu
housingonline.unh.edu
co-gen-gw.unh.edu
lists.unh.edu
ipmall.info
ciceet.unh.edu
saip2.unh.edu
exchange.unh.edu
blackbaudfrogprod.unh.edu
leaf.sr.unh.edu
connect.vpn.unh.edu
www.unh.edu
Certificate
The complete raw certificate details for saip2.unh.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH1jCCBj6gAwIBAgIQQefLZKBBYv7NTzJOyWz2WzANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSW50ZXJuZXQyMSEwHwYDVQQDExhJbkNv bW1vbiBSU0EgU2VydmVyIENBIDIwHhcNMjMxMjA4MDAwMDAwWhcNMjUwMTA3MjM1 OTU5WjBqMQswCQYDVQQGEwJVUzEWMBQGA1UECBMNTmV3IEhhbXBzaGlyZTErMCkG A1UEChMiVW5pdmVyc2l0eSBTeXN0ZW0gb2YgTmV3IEhhbXBzaGlyZTEWMBQGA1UE AxMNc2FpcDIudW5oLmVkdTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AMJq/puRAzx+SgbfQQnWXzV7Lukjttlyftp2mX04VPLxPSkMxiU5TNIL633UWRQn PYz9QA6QONwaybhkUlXDjWKDUNVbGSdKpRsaU9N3+482WX+ikD0W6V5wsr/UD3ys lHZ7pMkrREjPEiOtXipPUYFV/0vLOsTysp3CUS7CkzJVJNi51UJLv93zMhwLyIx+ uLWAoe/3EcrDPsrRl23WrIFV5227siuQ2078zzyw4NQGEqD/kj4k1BX04ZgYLODN IS0kPu8W2vmuRTMKzG1d0lWM/l54QptqCcfHKmJ473A+IDQkcffkDq3mwxDT246G 0vcV9pKf3iZM8nReTeh2waynfvnRuirlUQBXKRhZ/sXLxba68bBbpX7AsXtJhKLK Nfd5y8CTKZ06AXWhPZKiiZ2oSousmB2paYuZdnNLRM6OEOt875/1c4v+WZIXTyVb 4nOEzuRibYDfOcj3qdcnnZ01jzMZy3/U45BIK5HXu38JNBHEGSfNnPEthrlkLC4S /NbwRUQwbBnYd8b1NcnjSHrzlv5PQz1rrK6Bk+yjkpBEVD0/8qnpP0TmWVd6n9dF oTIiG6FwYVBm3F5tld13oQHvpcMd7FjEQSCXZcwvlrDMDQf0OhCsyw5+LwSBo9ir tHajLoXnQBdGtb3gmVCL/M6WqnK8MWNrWAtnSQ/eUmD/AgMBAAGjggMcMIIDGDAf BgNVHSMEGDAWgBTvTACSpvt2Ll6V4slfhxsZ1U3i2TAdBgNVHQ4EFgQU9hSTSPk/ XiZT22gNHPI0JMJO+C4wDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGy MQECAmcwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYG Z4EMAQICMEAGA1UdHwQ5MDcwNaAzoDGGL2h0dHA6Ly9jcmwuc2VjdGlnby5jb20v SW5Db21tb25SU0FTZXJ2ZXJDQTIuY3JsMHAGCCsGAQUFBwEBBGQwYjA7BggrBgEF BQcwAoYvaHR0cDovL2NydC5zZWN0aWdvLmNvbS9JbkNvbW1vblJTQVNlcnZlckNB Mi5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMBgGA1Ud EQQRMA+CDXNhaXAyLnVuaC5lZHUwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2 AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjEpaDN0AAAQDAEcw RQIgeoY3NPi0kcvc0PbbH09eN/COf0ycp9Ca7HMCzN4WPDMCIQDwfaw2HakGfiDg kBrYFm7wttjVO5GI5812MDIi/1+V6wB2AKLjCuRF772tm3447Udnd1PXgluElNcr XhssxLlQpEfnAAABjEpaDVAAAAQDAEcwRQIhANNO+gQZXBoBjtRrHFyvlF6jaI0H ZVkLaHbbGrc4mbP2AiAqKivJkE+LvFRWZ+r93j4ujtbEp2ROvKzCYX1n89WaYQB2 AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjEpaDLcAAAQDAEcw RQIhAKT7tWYFo3ok+UEVWHv2mH+WPFq0Zagl3vPLDcFHahRmAiAj/yPcZK9xICaS qOUFaTRAPirNdouNXpFtOxo8Op780TANBgkqhkiG9w0BAQwFAAOCAYEADUhs5xl6 oJF5iBxPIqLn1M/x4J709hha1hbfLnh8nDUuGSyXQLppg+8F/LTmWzfO7mkU/8Ni pp/I0h+OdNq9ngGhjUeUc8QsGKzZQyW2yF9ZbLupmGGxRtA/1z7F4I3ee+H6VwoU +0POPHNjaEIIp3M3DL8QPCN0aft6gb3Im7VqSXI5GPpZGLjUhI4WQRctHV8TtMpV iAs4HNAmIK2kPtyISSV3lrLJFEsWQ3UnW8sG6GxH2EOO9za6l1SJ5ne0P4NdNj6M l+7QauPjqhy5ddKj+SydRjoTpy8bO/uB/yNW0CrRpRpfPry12+cl34xQjq0swS/g gpteMV3PytxyFIqTm/wSxMqTwdr2D5tXtqLb9HZ/9EleaSEpoi1W8O51TPJCoY5o EbhC2vkGT5iUPXJggrqcsaS7Bqh0izK5XGTRDhT2noXCzadO78McnDYMKqxtoe+G 4a3liywMgYjQH/yAPckq6adYWToRyNNqFRYQok5LLOk9d8QDQcVIuwDl -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwmr+m5EDPH5KBt9BCdZf NXsu6SO22XJ+2naZfThU8vE9KQzGJTlM0gvrfdRZFCc9jP1ADpA43BrJuGRSVcON YoNQ1VsZJ0qlGxpT03f7jzZZf6KQPRbpXnCyv9QPfKyUdnukyStESM8SI61eKk9R gVX/S8s6xPKyncJRLsKTMlUk2LnVQku/3fMyHAvIjH64tYCh7/cRysM+ytGXbdas gVXnbbuyK5DbTvzPPLDg1AYSoP+SPiTUFfThmBgs4M0hLSQ+7xba+a5FMwrMbV3S VYz+XnhCm2oJx8cqYnjvcD4gNCRx9+QOrebDENPbjobS9xX2kp/eJkzydF5N6HbB rKd++dG6KuVRAFcpGFn+xcvFtrrxsFulfsCxe0mEoso193nLwJMpnToBdaE9kqKJ nahKi6yYHalpi5l2c0tEzo4Q63zvn/Vzi/5ZkhdPJVvic4TO5GJtgN85yPep1yed nTWPMxnLf9TjkEgrkde7fwk0EcQZJ82c8S2GuWQsLhL81vBFRDBsGdh3xvU1yeNI evOW/k9DPWusroGT7KOSkERUPT/yqek/ROZZV3qf10WhMiIboXBhUGbcXm2V3Xeh Ae+lwx3sWMRBIJdlzC+WsMwNB/Q6EKzLDn4vBIGj2Ku0dqMuhedAF0a1veCZUIv8 zpaqcrwxY2tYC2dJD95SYP8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 87603365601903518878340400671359825499 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Hampshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University System of New Hampshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saip2.unh.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 793156026255034953892565823492499710961687891834586081865277528848922592441516270157652864611504546289010638621259931998787475008170521009476374863278981174812083091993033573561024298681859641480046538052259854608289747890550333474096102842873687534554660423542250891496449399464222787795529570280724193703339424033427582819634334711421127759477479642258236667648075671196321949739490076634114301385969754790114110373867979172622076196660092837287143170380918694078148197265553387820637218609787596040820588390207606068083844260502537732212518917802365550606665434427607953174480287200754809170128596794640871803751201231479060935248561961696862496786883306729642096723759061918222629272897818686806752480733228602104040748582080398288317564835636425314230545729098373976014313173030761432807223986724983967877308170084694762066650897459965294987422395441888947044301497471556503004361849106730785181552230842468754174009293707680515827006790999044489967843179398717490372072062970344200378709512907948168631061382485933992366620094787314463909545177180804078095637193353976417626768179290744962218787751961487803403707494640775640763375930505652671078302744349385516469092849843204981321337595580033221516779880559159769451757461759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ef4c0092a6fb762e5e95e2c95f871b19d54de2d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6149348f93f5e2653db680d1cf23424c24ef82e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.103 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/InCommonRSAServerCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/InCommonRSAServerCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saip2.unh.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (3072 bits) 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