idp.usm.edu
- University of Southern Mississippi -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number ed:4b:f4:98:15:2f:29:5e:43:6f:1a:25:76:5d:eb:68 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Southern Mississippi
Organization:
University of Southern Mississippi
Organization unit: iTech-Systems Team
Organization unit: iTech-Systems Team
Address:
118 College Drive
Postal code: 39406-0001
State / Province: Mississippi
Locality: Hattiesburg
Country: US
Postal code: 39406-0001
State / Province: Mississippi
Locality: Hattiesburg
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): ed:4b:f4:98:15:2f:29:5e:43:6f:1a:25:76:5d:eb:68Serial Number (int): 315421418222595367201753823728868649832
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: f5:70:e4:01:64:ac:56:0b:b8:06:85:67:85:83:97:9f:38:8b:71:ec
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): aa:36:61:aa:ed:a4:3f:ab:e9:f4:70:47:57:5a:93:1c:e8:f9:56:7c
Fingerprint (sha256): 19:34:d7:8e:93:18:2f:75:3a:2f:30:36:fb:7e:13:07:bb:53:e3:4d:b5:9d:2d:4e:7d:df:48:e7:2a:31:4f:92
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate idp.usm.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for idp.usm.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
idp.usm.edu
Other certificates including the domain name usm.edu
(limited to 100 certificates)
www.online.usm.edu
rms.usm.edu
eaglenet.usm.edu
sfunder9cert.net
rmsweb.usm.edu
mbrace.usm.edu
www.mbrace.usm.edu
DMM2.USM.EDU
iway.usm.edu
www.mbrace.usm.edu
cb.usm.edu
wireless.usm.edu
aquila.usm.edu
rmsweb.usm.edu
psoftzilla.usm.edu
satst90.otr.usm.edu
mbrace.usm.edu
sts.usm.edu
hpc.st.usm.edu
soarhr.usm.edu
mbrace.usm.edu
arms.usm.edu
libguides.lib.usm.edu
advisortrac.usm.edu
webtma.usm.edu
libguides.lib.usm.edu
sfunder9cert.net
usm.edu
soarfin.usm.edu
meet.usm.edu
sfunder9cert.net
forms.usm.edu
ncs4.usm.edu
unv100.usm.edu
preservica.usm.edu
fncmp91.otr.usm.edu
sacmp90.otr.usm.edu
soar.usm.edu
soarfin.usm.edu
specialcollections.usm.edu
mailman.usm.edu
sfunder9cert.net
aquila.usm.edu
aquila.usm.edu
soar.usm.edu
sfunder9cert.net
soarmobile.usm.edu
soar.usm.edu
rmstest.usm.edu
cms02.usm.edu
math.usm.edu
goldengate.usm.edu
insights.usm.edu
classificationweb.usm.edu
scalefundercert.net
cmsrec01.usm.edu
aquila.usm.edu
ncs4.usm.edu
eaglenet.usm.edu
*.usm.edu
vigp.usm.edu
math.usm.edu
vicp.usm.edu
aquila.usm.edu
pax.st.usm.edu
www.cs.usm.edu
dagger.usm.edu
spacewalk.usm.edu
orca.st.usm.edu
specialcollections.usm.edu
talon.st.usm.edu
lib.usm.edu
web04.usm.edu
idp.usm.edu
usmwireless.usm.edu
ncs4.usm.edu
scalefundercert.net
transfer.usm.edu
sns.usm.edu
manager.lib.usm.edu
sfunder9cert.net
sacir92.otr.usm.edu
timeclock.usm.edu
pinnweb.usm.edu
itsmtest.itech.usm.edu
cb.usm.edu
eagleappsid.usm.edu
scalefundercert.net
itsm.itech.usm.edu
hpc.st.usm.edu
idreset.usm.edu
USMwireless.usm.edu
shsweb.usm.edu
osctrl1.itech.usm.edu
math.usm.edu
lib.usm.edu
rmsapp.usm.edu
sacir90.otr.usm.edu
scalefundercert.net
*.usm.edu
rms.usm.edu
eaglenet.usm.edu
sfunder9cert.net
rmsweb.usm.edu
mbrace.usm.edu
www.mbrace.usm.edu
DMM2.USM.EDU
iway.usm.edu
www.mbrace.usm.edu
cb.usm.edu
wireless.usm.edu
aquila.usm.edu
rmsweb.usm.edu
psoftzilla.usm.edu
satst90.otr.usm.edu
mbrace.usm.edu
sts.usm.edu
hpc.st.usm.edu
soarhr.usm.edu
mbrace.usm.edu
arms.usm.edu
libguides.lib.usm.edu
advisortrac.usm.edu
webtma.usm.edu
libguides.lib.usm.edu
sfunder9cert.net
usm.edu
soarfin.usm.edu
meet.usm.edu
sfunder9cert.net
forms.usm.edu
ncs4.usm.edu
unv100.usm.edu
preservica.usm.edu
fncmp91.otr.usm.edu
sacmp90.otr.usm.edu
soar.usm.edu
soarfin.usm.edu
specialcollections.usm.edu
mailman.usm.edu
sfunder9cert.net
aquila.usm.edu
aquila.usm.edu
soar.usm.edu
sfunder9cert.net
soarmobile.usm.edu
soar.usm.edu
rmstest.usm.edu
cms02.usm.edu
math.usm.edu
goldengate.usm.edu
insights.usm.edu
classificationweb.usm.edu
scalefundercert.net
cmsrec01.usm.edu
aquila.usm.edu
ncs4.usm.edu
eaglenet.usm.edu
*.usm.edu
vigp.usm.edu
math.usm.edu
vicp.usm.edu
aquila.usm.edu
pax.st.usm.edu
www.cs.usm.edu
dagger.usm.edu
spacewalk.usm.edu
orca.st.usm.edu
specialcollections.usm.edu
talon.st.usm.edu
lib.usm.edu
web04.usm.edu
idp.usm.edu
usmwireless.usm.edu
ncs4.usm.edu
scalefundercert.net
transfer.usm.edu
sns.usm.edu
manager.lib.usm.edu
sfunder9cert.net
sacir92.otr.usm.edu
timeclock.usm.edu
pinnweb.usm.edu
itsmtest.itech.usm.edu
cb.usm.edu
eagleappsid.usm.edu
scalefundercert.net
itsm.itech.usm.edu
hpc.st.usm.edu
idreset.usm.edu
USMwireless.usm.edu
shsweb.usm.edu
osctrl1.itech.usm.edu
math.usm.edu
lib.usm.edu
rmsapp.usm.edu
sacir90.otr.usm.edu
scalefundercert.net
*.usm.edu
Certificate
The complete raw certificate details for idp.usm.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEDCCBfigAwIBAgIRAO1L9JgVLyleQ28aJXZd62gwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMjAwMzE5MDAwMDAwWhcNMjIwMzE5 MjM1OTU5WjCByzELMAkGA1UEBhMCVVMxEzARBgNVBBETCjM5NDA2LTAwMDExFDAS BgNVBAgTC01pc3Npc3NpcHBpMRQwEgYDVQQHEwtIYXR0aWVzYnVyZzEbMBkGA1UE CRMSMTE4ICBDb2xsZWdlIERyaXZlMSswKQYDVQQKEyJVbml2ZXJzaXR5IG9mIFNv dXRoZXJuIE1pc3Npc3NpcHBpMRswGQYDVQQLExJpVGVjaC1TeXN0ZW1zIFRlYW0x FDASBgNVBAMTC2lkcC51c20uZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAhlJXqWqLG8X8gWS8bHcWeHkqvjdME/Rh8zp16i8eeFGCkTj9jsTnKhcs aJAN8R6ot7l3CIcqCNuqVOyIDDVOtfVgWKGSfixvvOOY0Mo5FD2oagXFIFKM+b3c EaJUZs1hrPn86tKZDtcq1eFbW5zqRcBHVQr9K1Ol+zHgiKDCtmoIWHy98I8mJRTd vJMLjZ3oVgbvzTFBoeIn2l/5QEs1L4fhB3ZpyMMGl/umNAGKTCax7boLErsk1asM 4mn9S71wB24tz64X6cgDDBpr5TmUclc/O1WUCqNGpiUpvUjC2DCjpBnac5OvW+ku lscqnO56CvLfkVhRXBuEgPAEWD5zQwIDAQABo4IDQTCCAz0wHwYDVR0jBBgwFoAU HgWjd49sluJbh0umtIascQAM5zgwHQYDVR0OBBYEFPVw5AFkrFYLuAaFZ4WDl584 i3HsMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMBATBCMEAG CCsGAQUFBwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9yZXBvc2l0 b3J5L2Nwc19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1hjNodHRw Oi8vY3JsLmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJDQS5jcmww dQYIKwYBBQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVzZXJ0cnVz dC5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcwAYYZaHR0 cDovL29jc3AudXNlcnRydXN0LmNvbTAWBgNVHREEDzANggtpZHAudXNtLmVkdTCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYARqVV63X6kSAwtaKJafTzfREsQXS+ /Um4havy/HD+bUcAAAFw9G324gAABAMARzBFAiBlXrNVjFkIheNoP5jCT6IBCAwv J3K5IxKu57oFVwLp8QIhANMzKBPXNeVdGnSj2L2YYxBKQ7rmDjh9MO6L7IuxCuVS AHYA36Veq2iCTx9sre64X04+WurNohKkal6OOxLAIERcKnMAAAFw9G32qQAABAMA RzBFAiB6nzwfwbZcjFnHeMI9XobL6MNmShThwp+LJrQF8f9qBwIhAJ0JYQkh1Tvt W9nV6KDwIgFHsU9Axac8Bn4VuadcGY6YAHYAQcjKsd8iRkoQxqE6CUKHXk4xixsD 6+tLx2jwkGKWBvYAAAFw9G32zgAABAMARzBFAiEAozYVN5WqqbMPG30gnPjRB3ZE f4s2XN+A+zcURWGPbM0CID4SmCcAlXFifCCiZSUTf02tMshGZ71WUVjKPf+bEefx MA0GCSqGSIb3DQEBCwUAA4IBAQAPPOUkM61vy8qtMP600+nFk63MgFfDJB523QaK Nj97JXahLnVW/EatE6aVZ9t3Ztlh0gppqyBzIYYEh7tWRGx+NvTl696ruX9vkDFl CSPz2Xk0nvdDuue7mPzb/C1Yz7ZCuMFxaoTNAKQaZZaojjeEeeXAJVsXdcUIbz4i 6G1inR6FxZQDctVKSVIF7DGLGGCdoaOn/MapUKe3f5omkyhLZqxz1d1Ti5w9gQdT N3HgjdVE4HreHrQbWxPI5nVLo3/N90ehYi8yUn+x3v+K9yzqLvqnVbou3ZUrg1M+ tuSJnTXGun9OjWl9iBoGxxc++t/KlAs+H9yIvfq4i098N6bd -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhlJXqWqLG8X8gWS8bHcW eHkqvjdME/Rh8zp16i8eeFGCkTj9jsTnKhcsaJAN8R6ot7l3CIcqCNuqVOyIDDVO tfVgWKGSfixvvOOY0Mo5FD2oagXFIFKM+b3cEaJUZs1hrPn86tKZDtcq1eFbW5zq RcBHVQr9K1Ol+zHgiKDCtmoIWHy98I8mJRTdvJMLjZ3oVgbvzTFBoeIn2l/5QEs1 L4fhB3ZpyMMGl/umNAGKTCax7boLErsk1asM4mn9S71wB24tz64X6cgDDBpr5TmU clc/O1WUCqNGpiUpvUjC2DCjpBnac5OvW+kulscqnO56CvLfkVhRXBuEgPAEWD5z QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315421418222595367201753823728868649832 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '39406-0001' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mississippi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hattiesburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '118 College Drive' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Southern Mississippi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'iTech-Systems Team' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'idp.usm.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16956537430463667175881914871088294506713915096561670486300381486211168733262034104709409906778434741097484883322545581641981825064791494758514724330113503884003370059436725386350384418797302465938412711334436049204744725640832094102809631271392848050415374948247126266630984682228402111380021747637225034708831335301137623417837325949320209303415838370913569017406661419157113676454628034013206998036814461797098297734575334476638939118992384467191415217553275447387216257806175913697400614096793876023039418732368020123373371187541985505331677314986088285153804100266399991440474434991990189562446362662130128155459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f570e40164ac560bb80685678583979f388b71ec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idp.usm.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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