s3.healthdata.org
- University of Washington -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number ad:e1:b1:14:0f:76:5c:d5:d1:d2:49:6c:aa:a2:56:58 was issued on by Internet2.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Washington
Organization:
University of Washington
Organization unit: UW-IT
Organization unit: UW-IT
Address:
4545 15th Ave NE
Postal code: 98195
State / Province: WA
Locality: Seattle
Country: US
Postal code: 98195
State / Province: WA
Locality: Seattle
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): ad:e1:b1:14:0f:76:5c:d5:d1:d2:49:6c:aa:a2:56:58Serial Number (int): 231128301639809245655756615248016201304
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 24:b9:ef:8e:be:41:10:77:f6:05:fe:61:5d:02:83:54:5f:1d:d9:52
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 5a:44:c9:71:e2:e5:c9:3f:30:fc:2d:31:26:da:43:25:eb:59:4e:6e
Fingerprint (sha256): 1e:89:17:65:c0:a3:ff:b4:8e:ed:88:81:a2:b0:e8:70:9a:d1:bd:82:ca:55:4e:2a:6a:c5:3f:d2:9c:8e:56:9d
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate s3.healthdata.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for s3.healthdata.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
s3.healthdata.org
*.s3.healthdata.org
*.s3.ihme.uw.edu
*.s3.ihme.washington.edu
*.s3.ihmeuw.org
s3.ihme.uw.edu
s3.ihme.washington.edu
s3.ihmeuw.org
*.s3.healthdata.org
*.s3.ihme.uw.edu
*.s3.ihme.washington.edu
*.s3.ihmeuw.org
s3.ihme.uw.edu
s3.ihme.washington.edu
s3.ihmeuw.org
Other certificates including the domain name healthdata.org
(limited to 100 certificates)
dev.healthdata.org
*.stage.ghdx.healthdata.org
ssl441041.cloudflaressl.com
login.healthdata.org
ssl441041.cloudflaressl.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
ssl441041.cloudflaressl.com
sni.cloudflaressl.com
ssl441042.cloudflaressl.com
ssl4831.cloudflare.com
sni.cloudflaressl.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
healthdata.org
healthdata.org
s3.healthdata.org
learn.healthdata.org
ssl319586.cloudflaressl.com
learn.healthdata.org
learn.healthdata.org
dl.healthdata.org
ssl441041.cloudflaressl.com
learn.healthdata.org
console.dl.healthdata.org
healthdata.org
ssl441041.cloudflaressl.com
ssl319586.cloudflaressl.com
healthdata.org
sni.cloudflaressl.com
ssl4831.cloudflare.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
dl.healthdata.org
console.dl.healthdata.org
sni.cloudflaressl.com
ssl441042.cloudflaressl.com
dev.healthdata.org
learn.healthdata.org
healthdata.org
healthdata.org
learn.healthdata.org
sni.cloudflaressl.com
ssl441042.cloudflaressl.com
learn.healthdata.org
healthdata.org
ssl441040.cloudflaressl.com
login.healthdata.org
*.stage.ghdx.healthdata.org
ssl441040.cloudflaressl.com
ssl441041.cloudflaressl.com
healthdata.org
www.healthdata.org
*.stage.ghdx.healthdata.org
console.dl.healthdata.org
learn.healthdata.org
console.dl.healthdata.org
healthdata.org
healthdata.org
console.dl.healthdata.org
dl.healthdata.org
console.dl.healthdata.org
healthdata.org
login.healthdata.org
console.dl.healthdata.org
console.dl.healthdata.org
healthdata.org
sni.cloudflaressl.com
dl.healthdata.org
ssl441042.cloudflaressl.com
healthdata.org
healthdata.org
ssl441042.cloudflaressl.com
www.healthdata.org
healthdata.org
ssl441040.cloudflaressl.com
learn.healthdata.org
ssl441040.cloudflaressl.com
console.dl.healthdata.org
ssl4831.cloudflare.com
sni.cloudflaressl.com
console.dl.healthdata.org
healthdata.org
login.healthdata.org
learn.healthdata.org
ssl441042.cloudflaressl.com
*.stage.ghdx.healthdata.org
ssl441040.cloudflaressl.com
ssl441042.cloudflaressl.com
healthdata.org
login.healthdata.org
learn.healthdata.org
ssl441041.cloudflaressl.com
ssl441041.cloudflaressl.com
ssl4831.cloudflare.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
ssl441040.cloudflaressl.com
learn.healthdata.org
sni.cloudflaressl.com
*.stage.ghdx.healthdata.org
ssl441041.cloudflaressl.com
login.healthdata.org
ssl441041.cloudflaressl.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
ssl441041.cloudflaressl.com
sni.cloudflaressl.com
ssl441042.cloudflaressl.com
ssl4831.cloudflare.com
sni.cloudflaressl.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
healthdata.org
healthdata.org
s3.healthdata.org
learn.healthdata.org
ssl319586.cloudflaressl.com
learn.healthdata.org
learn.healthdata.org
dl.healthdata.org
ssl441041.cloudflaressl.com
learn.healthdata.org
console.dl.healthdata.org
healthdata.org
ssl441041.cloudflaressl.com
ssl319586.cloudflaressl.com
healthdata.org
sni.cloudflaressl.com
ssl4831.cloudflare.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
dl.healthdata.org
console.dl.healthdata.org
sni.cloudflaressl.com
ssl441042.cloudflaressl.com
dev.healthdata.org
learn.healthdata.org
healthdata.org
healthdata.org
learn.healthdata.org
sni.cloudflaressl.com
ssl441042.cloudflaressl.com
learn.healthdata.org
healthdata.org
ssl441040.cloudflaressl.com
login.healthdata.org
*.stage.ghdx.healthdata.org
ssl441040.cloudflaressl.com
ssl441041.cloudflaressl.com
healthdata.org
www.healthdata.org
*.stage.ghdx.healthdata.org
console.dl.healthdata.org
learn.healthdata.org
console.dl.healthdata.org
healthdata.org
healthdata.org
console.dl.healthdata.org
dl.healthdata.org
console.dl.healthdata.org
healthdata.org
login.healthdata.org
console.dl.healthdata.org
console.dl.healthdata.org
healthdata.org
sni.cloudflaressl.com
dl.healthdata.org
ssl441042.cloudflaressl.com
healthdata.org
healthdata.org
ssl441042.cloudflaressl.com
www.healthdata.org
healthdata.org
ssl441040.cloudflaressl.com
learn.healthdata.org
ssl441040.cloudflaressl.com
console.dl.healthdata.org
ssl4831.cloudflare.com
sni.cloudflaressl.com
console.dl.healthdata.org
healthdata.org
login.healthdata.org
learn.healthdata.org
ssl441042.cloudflaressl.com
*.stage.ghdx.healthdata.org
ssl441040.cloudflaressl.com
ssl441042.cloudflaressl.com
healthdata.org
login.healthdata.org
learn.healthdata.org
ssl441041.cloudflaressl.com
ssl441041.cloudflaressl.com
ssl4831.cloudflare.com
ssl441041.cloudflaressl.com
ssl441042.cloudflaressl.com
ssl441040.cloudflaressl.com
learn.healthdata.org
sni.cloudflaressl.com
Certificate
The complete raw certificate details for s3.healthdata.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIRAK3hsRQPdlzV0dJJbKqiVlgwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTUxMDMwMDAwMDAwWhcNMTgxMDI5 MjM1OTU5WjCBpjELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTk4MTk1MQswCQYDVQQI EwJXQTEQMA4GA1UEBxMHU2VhdHRsZTEZMBcGA1UECRMQNDU0NSAxNXRoIEF2ZSBO RTEhMB8GA1UEChMYVW5pdmVyc2l0eSBvZiBXYXNoaW5ndG9uMQ4wDAYDVQQLEwVV Vy1JVDEaMBgGA1UEAxMRczMuaGVhbHRoZGF0YS5vcmcwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQC/ebHL4S6oTEcSHfdt1C5WIbvzYkoU5jSF2VZ7xsMb 3nqMENBtyluOIVvaMHdTk1XH7QfsFnmWvljTJeV/8nwYsOp4LetPmRWwYApgynlV aC7RPuqW5otqKbUi1eN+MAQw5tKwwC+BnXGLpPRa9JA8wW9eCU9egY/mW44v3Xvc 2fBuTWtnASPmDe3SYqeq7FCaUQ62WTnX7rcEd3ZkpEUFc+IVadGalRXzP8OWxjEm daRMpReaJ7/VBJKPfP7S8I0q5NTy/b7IWM/76/p5bt8IkyO7cDYyOqkdDE05vFTD YVHGNKbfuAuFvYEMNVN0V4iSY5VpFGqWh4QZvDp5VmBWkCsXwlVstlw2sGGdQggg mGLasK7WY2sMi7yLSKR75CNVMTk1INxvVF/dLuDUQ99ulZnHp3xV8HvEXtdTDeDa pyfOIiXKW7bXS3U89EN5LCMB8hpchPXmV+HDAviH1vgGbDo4fnVx1/kVX/DJP6Hk POWpBUqgmEi1ZgiRkWRldq/tYHS4hRCla4YBJIDlFTjC8HiW+ka9wKVSDQsqdcP1 6gMmieiAogrRyoCV1cN4Qg+W01YhcdSF2KusrdgEOXC0DkYz+SFYz2jum8SKj+nJ vv51SPNJbVSl9+emYwtGk33fefj/QtygvfEv+dBRduUPbT5WXc8R2Xq4EqlhYMhM VQIDAQABo4ICUTCCAk0wHwYDVR0jBBgwFoAUHgWjd49sluJbh0umtIascQAM5zgw HQYDVR0OBBYEFCS5746+QRB39gX+YV0Cg1RfHdlSMA4GA1UdDwEB/wQEAwIFoDAM BgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBnBgNV HSAEYDBeMFIGDCsGAQQBriMBBAMBATBCMEAGCCsGAQUFBwIBFjRodHRwczovL3d3 dy5pbmNvbW1vbi5vcmcvY2VydC9yZXBvc2l0b3J5L2Nwc19zc2wucGRmMAgGBmeB DAECAjBEBgNVHR8EPTA7MDmgN6A1hjNodHRwOi8vY3JsLmluY29tbW9uLXJzYS5v cmcvSW5Db21tb25SU0FTZXJ2ZXJDQS5jcmwwdQYIKwYBBQUHAQEEaTBnMD4GCCsG AQUFBzAChjJodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vSW5Db21tb25SU0FTZXJ2 ZXJDQV8yLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNv bTCBpwYDVR0RBIGfMIGcghFzMy5oZWFsdGhkYXRhLm9yZ4ITKi5zMy5oZWFsdGhk YXRhLm9yZ4IQKi5zMy5paG1lLnV3LmVkdYIYKi5zMy5paG1lLndhc2hpbmd0b24u ZWR1gg8qLnMzLmlobWV1dy5vcmeCDnMzLmlobWUudXcuZWR1ghZzMy5paG1lLndh c2hpbmd0b24uZWR1gg1zMy5paG1ldXcub3JnMA0GCSqGSIb3DQEBCwUAA4IBAQBY wtIk401UZnpuKSCS/Ha+dRCwOTlLqN2998q5iObQCm70YWYnIh1eGqmFuhBFfMHE JTdY2tZbJibhfmAvmAAD2N96IF83Fav4z5u985PlPvHhD1MN5fa8pnkVNVsqpqVk uicHtx5AIkxu90t4/pJaielOL8HyMRY7F/Rntka3hZEVn1cCztHHiX21VbA9p4JX FVCw31WgsYhOTdEr1R8pqESzOgO06Roo+29xWSvt8gcH54knXc9rxU9MciVPM4SS viWCqZvEJDp2D1CtxRjNE5Der58maADvWJ1Nx83pQEe3QP5lb57lATwHsc5hGgpM uBzdUitbfQYhn4mxGnny -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv3mxy+EuqExHEh33bdQu ViG782JKFOY0hdlWe8bDG956jBDQbcpbjiFb2jB3U5NVx+0H7BZ5lr5Y0yXlf/J8 GLDqeC3rT5kVsGAKYMp5VWgu0T7qluaLaim1ItXjfjAEMObSsMAvgZ1xi6T0WvSQ PMFvXglPXoGP5luOL9173Nnwbk1rZwEj5g3t0mKnquxQmlEOtlk51+63BHd2ZKRF BXPiFWnRmpUV8z/DlsYxJnWkTKUXmie/1QSSj3z+0vCNKuTU8v2+yFjP++v6eW7f CJMju3A2MjqpHQxNObxUw2FRxjSm37gLhb2BDDVTdFeIkmOVaRRqloeEGbw6eVZg VpArF8JVbLZcNrBhnUIIIJhi2rCu1mNrDIu8i0ike+QjVTE5NSDcb1Rf3S7g1EPf bpWZx6d8VfB7xF7XUw3g2qcnziIlylu210t1PPRDeSwjAfIaXIT15lfhwwL4h9b4 Bmw6OH51cdf5FV/wyT+h5DzlqQVKoJhItWYIkZFkZXav7WB0uIUQpWuGASSA5RU4 wvB4lvpGvcClUg0LKnXD9eoDJonogKIK0cqAldXDeEIPltNWIXHUhdirrK3YBDlw tA5GM/khWM9o7pvEio/pyb7+dUjzSW1UpffnpmMLRpN933n4/0LcoL3xL/nQUXbl D20+Vl3PEdl6uBKpYWDITFUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 231128301639809245655756615248016201304 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '98195' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Seattle' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '4545 15th Ave NE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UW-IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 's3.healthdata.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 781151354160712965302848787548844278233736001638616186129622002205633043357840997133412396359834621139925238796685950836425319237693053238669543464825738362311153869939216428401942626453835170690906427518442101255213333550620820541812718075273936735602517821542925984561517658114078820052683663914497392760903319681751698888644096470334399478031466572042585132408062081322574556552206380043767623222971294448703897984844532627759925487991042881046790519632544055471101902617761931391398199004757498467553436584976729672451346960896142916730130783446586432443284903903167395276711067625134257389679908651478727431514993051253693533170361657231733270007366177951296226045560531910758188267087070460167883532069025978858953405906911085826050786303259631904169837559995109615310617539904170921558870473662323958626310711502712467570143508978099075631603450685219825042933064000377269329670107737225643516109651544584595505258331529779294710425029962808306485326456267005206187543392865298130737762832199659395906205807203070798374300157646359087966925981323326445336366102370869930207368382957386068062969215055585021841126406677013171901419569995372584109432998625097485763516032314154688735962235552717407927465366723214447098875890773 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 24b9ef8ebe411077f605fe615d0283545f1dd952 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (159 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's3.healthdata.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.s3.healthdata.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.s3.ihme.uw.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.s3.ihme.washington.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.s3.ihmeuw.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's3.ihme.uw.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's3.ihme.washington.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's3.ihmeuw.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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