shib2idp.ntu.ac.uk
- Nottingham Trent University -
Issued by TERENA SSL CA
About this certificate
This digital certificate with serial number 78:16:29:56:08:88:b7:4c:55:a6:76:a1:40:25:c1:ee was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
Nottingham Trent University
Organization:
Nottingham Trent University
Organization unit: Information Systems
Organization unit: Information Systems
State / Province:
Nottinghamshire
Locality: Nottingham
Country: GB
Locality: Nottingham
Country: GB
TERENA
Organization:
TERENA
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 78:16:29:56:08:88:b7:4c:55:a6:76:a1:40:25:c1:eeSerial Number (int): 159622428420134556492733948673820836334
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 74:e6:17:0a:22:30:ff:4f:8f:9a:ec:b7:1b:e7:63:ed:28:5a:0b:49
AuthorityKeyId: 0c:bd:93:68:0c:f3:de:ab:a3:49:6b:2b:37:57:47:ea:90:e3:b9:ed
Fingerprint (sha1): 40:03:75:d5:b4:f5:18:76:fb:97:4d:b6:74:ac:91:e4:99:66:1c:02
Fingerprint (sha256): 24:b7:d1:ff:38:48:58:51:10:4c:e8:9c:fc:ce:e8:90:d0:d3:87:e1:e8:c4:de:30:bf:c6:57:93:80:c7:c4:de
Issuing Certificate URL: http://crt.tcs.terena.org/TERENASSLCA.crt
Revocation information
OCSP Server: http://ocsp.tcs.terena.orgCRL Distribution Point: http://crl.tcs.terena.org/TERENASSLCA.crl
Check the revocation status for certificate shib2idp.ntu.ac.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shib2idp.ntu.ac.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shib2idp.ntu.ac.uk
Other certificates including the domain name ntu.ac.uk
(limited to 100 certificates)
dev-in-place.ntu.ac.uk
support.ntu.ac.uk
www.nlscitrix.ntu.ac.uk
Easyprint.ntu.ac.uk
shibidp.ntu.ac.uk
owa.exrestore.ntu.ac.uk
possibilities.ntu.ac.uk
testidp1.ntu.ac.uk
ntuanywhere.ntu.ac.uk
sip.exrestore.ntu.ac.uk
vacancies.ntu.ac.uk
vacancies.ntu.ac.uk
www.ntu.ac.uk
online.ntu.ac.uk
support.ntu.ac.uk
opac.ntu.ac.uk
cty-fe-pool-ext.ntu.ac.uk
train-in-place.ntu.ac.uk
5754435435233280-fe4.pantheonsite.io
staffpassword.ntu.ac.uk
driscoll.ntu.ac.uk
opac.ntu.ac.uk
selfservice.ntu.ac.uk
ntuanywhere.ntu.ac.uk
brackenhurst.elearn.ntu.ac.uk
smartcard.ntu.ac.uk
city-fe-pool-ext.exrestore.ntu.ac.uk
www2.ntu.ac.uk
wireless.ntu.ac.uk
elearn.ntu.ac.uk
outlook.su.ntu.ac.uk
online.ntu.ac.uk
office365.ntu.ac.uk
www2.ntu.ac.uk
ntusecurity.ntu.ac.uk
opac.ntu.ac.uk
testidp1.ntu.ac.uk
wireless.ntu.ac.uk
online.ntu.ac.uk
vacancies.ntu.ac.uk
landing.online.ntu.ac.uk
www.onlinepayments.ntu.ac.uk
strenton.com
elearn.ntu.ac.uk
lawquiz.ntu.ac.uk
in-place.ntu.ac.uk
www4.ntu.ac.uk
shibsp.ntu.ac.uk
socscibookings.ntu.ac.uk
www.nlsportal.ntu.ac.uk
sportbooking.ntu.ac.uk
warren.ntu.ac.uk
selfservice.ntu.ac.uk
support.ntu.ac.uk
owa.exrestore.ntu.ac.uk
brackenhurst.elearn.ntu.ac.uk
journals.ntu.ac.uk
siso.ntu.ac.uk
mypeople.ntu.ac.uk
vacancies.ntu.ac.uk
cas.ntu.ac.uk
owa.exrestore.ntu.ac.uk
gandalf.ads.ntu.ac.uk
online.ntu.ac.uk
possibilities.ntu.ac.uk
warren.ntu.ac.uk
curriculumrefresh.ntu.ac.uk
wake.ntu.ac.uk
www.onlinepayments.ntu.ac.uk
landing.online.ntu.ac.uk
wireless.ntu.ac.uk
krebs.ntu.ac.uk
mimas.ntu.ac.uk
thomasmore.ads.ntu.ac.uk
shib2idp.ntu.ac.uk
onlinestore.ntu.ac.uk
estates.ntu.ac.uk
strenton.com
ntusecurity.ntu.ac.uk
sip.ntu.ac.uk
socscibookings.ntu.ac.uk
lawquiz.ntu.ac.uk
myidentity.ntu.ac.uk
olympuss.ntu.ac.uk
www.ntu.ac.uk
video.ntu.ac.uk
wake.ntu.ac.uk
landing.online.ntu.ac.uk
staffpass.ntu.ac.uk
onlinestore.ntu.ac.uk
sip.exrestore.ntu.ac.uk
benga.ntu.ac.uk
ntu-interactions.ads.ntu.ac.uk
smartcard.ntu.ac.uk
artstore.ntu.ac.uk
office365.ntu.ac.uk
benga.ntu.ac.uk
testidp1v3.ntu.ac.uk
Beorn.ads.ntu.ac.uk
sip1.exrestore.ntu.ac.uk
support.ntu.ac.uk
www.nlscitrix.ntu.ac.uk
Easyprint.ntu.ac.uk
shibidp.ntu.ac.uk
owa.exrestore.ntu.ac.uk
possibilities.ntu.ac.uk
testidp1.ntu.ac.uk
ntuanywhere.ntu.ac.uk
sip.exrestore.ntu.ac.uk
vacancies.ntu.ac.uk
vacancies.ntu.ac.uk
www.ntu.ac.uk
online.ntu.ac.uk
support.ntu.ac.uk
opac.ntu.ac.uk
cty-fe-pool-ext.ntu.ac.uk
train-in-place.ntu.ac.uk
5754435435233280-fe4.pantheonsite.io
staffpassword.ntu.ac.uk
driscoll.ntu.ac.uk
opac.ntu.ac.uk
selfservice.ntu.ac.uk
ntuanywhere.ntu.ac.uk
brackenhurst.elearn.ntu.ac.uk
smartcard.ntu.ac.uk
city-fe-pool-ext.exrestore.ntu.ac.uk
www2.ntu.ac.uk
wireless.ntu.ac.uk
elearn.ntu.ac.uk
outlook.su.ntu.ac.uk
online.ntu.ac.uk
office365.ntu.ac.uk
www2.ntu.ac.uk
ntusecurity.ntu.ac.uk
opac.ntu.ac.uk
testidp1.ntu.ac.uk
wireless.ntu.ac.uk
online.ntu.ac.uk
vacancies.ntu.ac.uk
landing.online.ntu.ac.uk
www.onlinepayments.ntu.ac.uk
strenton.com
elearn.ntu.ac.uk
lawquiz.ntu.ac.uk
in-place.ntu.ac.uk
www4.ntu.ac.uk
shibsp.ntu.ac.uk
socscibookings.ntu.ac.uk
www.nlsportal.ntu.ac.uk
sportbooking.ntu.ac.uk
warren.ntu.ac.uk
selfservice.ntu.ac.uk
support.ntu.ac.uk
owa.exrestore.ntu.ac.uk
brackenhurst.elearn.ntu.ac.uk
journals.ntu.ac.uk
siso.ntu.ac.uk
mypeople.ntu.ac.uk
vacancies.ntu.ac.uk
cas.ntu.ac.uk
owa.exrestore.ntu.ac.uk
gandalf.ads.ntu.ac.uk
online.ntu.ac.uk
possibilities.ntu.ac.uk
warren.ntu.ac.uk
curriculumrefresh.ntu.ac.uk
wake.ntu.ac.uk
www.onlinepayments.ntu.ac.uk
landing.online.ntu.ac.uk
wireless.ntu.ac.uk
krebs.ntu.ac.uk
mimas.ntu.ac.uk
thomasmore.ads.ntu.ac.uk
shib2idp.ntu.ac.uk
onlinestore.ntu.ac.uk
estates.ntu.ac.uk
strenton.com
ntusecurity.ntu.ac.uk
sip.ntu.ac.uk
socscibookings.ntu.ac.uk
lawquiz.ntu.ac.uk
myidentity.ntu.ac.uk
olympuss.ntu.ac.uk
www.ntu.ac.uk
video.ntu.ac.uk
wake.ntu.ac.uk
landing.online.ntu.ac.uk
staffpass.ntu.ac.uk
onlinestore.ntu.ac.uk
sip.exrestore.ntu.ac.uk
benga.ntu.ac.uk
ntu-interactions.ads.ntu.ac.uk
smartcard.ntu.ac.uk
artstore.ntu.ac.uk
office365.ntu.ac.uk
benga.ntu.ac.uk
testidp1v3.ntu.ac.uk
Beorn.ads.ntu.ac.uk
sip1.exrestore.ntu.ac.uk
Certificate
The complete raw certificate details for shib2idp.ntu.ac.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIExTCCA62gAwIBAgIQeBYpVgiIt0xVpnahQCXB7jANBgkqhkiG9w0BAQUFADA2 MQswCQYDVQQGEwJOTDEPMA0GA1UEChMGVEVSRU5BMRYwFAYDVQQDEw1URVJFTkEg U1NMIENBMB4XDTA5MTIwODAwMDAwMFoXDTEyMTIwNzIzNTk1OVowgZ0xCzAJBgNV BAYTAkdCMRgwFgYDVQQIEw9Ob3R0aW5naGFtc2hpcmUxEzARBgNVBAcTCk5vdHRp bmdoYW0xJDAiBgNVBAoTG05vdHRpbmdoYW0gVHJlbnQgVW5pdmVyc2l0eTEcMBoG A1UECxMTSW5mb3JtYXRpb24gU3lzdGVtczEbMBkGA1UEAxMSc2hpYjJpZHAubnR1 LmFjLnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtn3OZnkj82U1 qep4KBD8tMy2A84GtKZj14us/mCzU4JBMQWoBUhihZfhLNErE4EQllz5wUAEDfYY wnclcngY2X6nzgqTJuGmrQLZfukFRPzBfdrQnJGTg/3/dIvCGJ+KfqIt5fGEAwYV pMJaDg6LjBcZSgjmppOocEKVQJydZWEZtKp5+PLDIfQ4btrxw1mCOo/ngEGB8owP eFXstxIweC+9XNhJp4c8L2iZEsfyrNSE+0KFb7DI2sdEbFyaDixLSFlX5CY7fhUS tPUzMOnhXnl2UR9hdgH8x60zu0iUAIXLx0cs81W+VtX2xgsg42oB/dw/6rfFWT37 EmXuJi+cQQIDAQABo4IBZTCCAWEwHwYDVR0jBBgwFoAUDL2TaAzz3qujSWsrN1dH 6pDjue0wHQYDVR0OBBYEFHTmFwoiMP9Pj5rstxvnY+0oWgtJMA4GA1UdDwEB/wQE AwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAYBgNVHSAEETAPMA0GCysGAQQBsjEBAgIdMDoGA1UdHwQzMDEwL6AtoCuGKWh0 dHA6Ly9jcmwudGNzLnRlcmVuYS5vcmcvVEVSRU5BU1NMQ0EuY3JsMG0GCCsGAQUF BwEBBGEwXzA1BggrBgEFBQcwAoYpaHR0cDovL2NydC50Y3MudGVyZW5hLm9yZy9U RVJFTkFTU0xDQS5jcnQwJgYIKwYBBQUHMAGGGmh0dHA6Ly9vY3NwLnRjcy50ZXJl bmEub3JnMB0GA1UdEQQWMBSCEnNoaWIyaWRwLm50dS5hYy51azANBgkqhkiG9w0B AQUFAAOCAQEAbSukzS+LMNl8JSaY/BU/GXaVuL1NKOMYH1IViI/fLmCI2AR49zmz zmncU+W3cBRr8ZTOUr7m97SRVtOD/4utvqZWODrRDR6r4s4NwMgogicQZt0cfpZw zcTXMYVlyQz75dIPeoNLGGTZ7Ctcr6VlTE0ucsjXaYo1aJpF6FU2jpYi7CFa/3YP ZODdcnOfkyA8Vpazxytky2EJe9gQeeCGLEvshngMHef3N9gvDtfZv4QalD3ZQbh4 MVASeNxKqGEtgQmNvbhNnnc1nEIEYIZLNZyfUYHZHUtN+fBhibUtDsTtGCuVtkHj qOvrJcZ8BPhqda41sFYUaKo2I4/Ja363Aw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtn3OZnkj82U1qep4KBD8 tMy2A84GtKZj14us/mCzU4JBMQWoBUhihZfhLNErE4EQllz5wUAEDfYYwnclcngY 2X6nzgqTJuGmrQLZfukFRPzBfdrQnJGTg/3/dIvCGJ+KfqIt5fGEAwYVpMJaDg6L jBcZSgjmppOocEKVQJydZWEZtKp5+PLDIfQ4btrxw1mCOo/ngEGB8owPeFXstxIw eC+9XNhJp4c8L2iZEsfyrNSE+0KFb7DI2sdEbFyaDixLSFlX5CY7fhUStPUzMOnh Xnl2UR9hdgH8x60zu0iUAIXLx0cs81W+VtX2xgsg42oB/dw/6rfFWT37EmXuJi+c QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 159622428420134556492733948673820836334 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2009-12-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-12-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nottinghamshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nottingham' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nottingham Trent University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Systems' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shib2idp.ntu.ac.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23037408878413085362440235655654670465269029211543097024774717323925303842805709848823985225081994470741852493442772676349924780887752212993131012947441331620093037853997760815716936517207347946853733531772588462204728298406928061333028640664717211347979761360688399708165141825761918471037330892123678696594170738732080911692547356071490305970646483091411201911067478170455336141639268721457086553414927586933695358167976257752583709665017311991262051922527747479758232028093712686684827312157559118066687768438521043038429605436943324963672383957112749156272711320323233331749696643463914680022707734591784520490049 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0cbd93680cf3deaba3496b2b375747ea90e3b9ed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 74e6170a2230ff4f8f9aecb71be763ed285a0b49 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.tcs.terena.org/TERENASSLCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.tcs.terena.org/TERENASSLCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.tcs.terena.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shib2idp.ntu.ac.uk' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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