ldapserver3.mica.edu

- Maryland Institute College of Art -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 9f:b9:2f:4c:09:29:8b:69:98:8b:6e:9e:d2:55:23:55 was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Maryland Institute College of Art

Organization: Maryland Institute College of Art
Organization unit: MICA Technology
Address: 1300 W Mount Royal Avenue
Postal code: 21217
State / Province: Maryland
Locality: Baltimore
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 9f:b9:2f:4c:09:29:8b:69:98:8b:6e:9e:d2:55:23:55
Serial Number (int): 212308785546057879019420600014445290325
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 1d:0e:33:36:4d:25:05:ab:b3:7b:8b:ad:8b:63:c7:74:ab:c5:36:ab
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): ff:59:48:20:e0:72:40:c5:c4:7f:8f:55:60:e5:6d:2e:14:80:df:d9
Fingerprint (sha256): 26:d7:76:a0:d0:fd:fb:8f:56:1b:8f:5e:92:61:7e:9a:f2:f5:5e:df:7c:58:bb:90:42:83:cb:3d:cc:a6:fe:da

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate ldapserver3.mica.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ldapserver3.mica.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ldapserver3.mica.edu

Other certificates including the domain name mica.edu

(limited to 100 certificates)
portal-sp.mica.edu
inside.mica.edu
libguides.mica.edu
*.ezproxy.mica.edu
www.mica.edu
discover.mica.edu
websupport.mica.edu
duo.mica.edu
medium.mica.edu
mica.edu
libguides.mica.edu
chesapeake.mica.edu
csprd90.mica.edu
CGWTest.mica.edu
ptprd85.mica.edu
gwprd.mica.edu
moodlerooms.com
moodlerooms.com
euphrates.mica.edu
shinultima.mica.edu
bahamut.mica.edu
mica2020.missionmedia.net
shop.mica.edu
new.mica.edu
danube.mica.edu
connect.mica.edu
apply.mica.edu
digitaldecker.mica.edu
tms.mica.edu
libguides.mica.edu
www.mica.edu
discover.mica.edu
plannedgiving.mica.edu
shop.mica.edu
sp.mica.edu
moodlerooms.com
shingraduate.mica.edu
ldapserver3.mica.edu
mica.edu
shop.mica.edu
shinomega.mica.edu
inside.mica.edu
shop.mica.edu
idp.mica.edu
commotion.mica.edu
accreditationpolicies.acr.org
libguides.mica.edu
moodlerooms.com
indus.mica.edu
kama.mica.edu
neckar.mica.edu
gwtst.mica.edu
gwprd.mica.edu
commtoolkit.mica.edu
inside.mica.edu
sp.mica.edu
info.mica.edu
velocity.mica.edu
moodlerooms.com
csprd90.mica.edu
webdev.mica.edu
classsearchtest.mica.edu
kalu.mica.edu
testing.mica.edu
moodlerooms.com
idp.mica.edu
velocity.mica.edu
www.mica.edu
online.mica.edu
mica.edu
ldapserver3.mica.edu
csprd92.mica.edu
mica.edu
sp.mica.edu
www.mica.edu
csprd90.mica.edu
velocity.mica.edu
idp.mica.edu
mica.edu
moodlerooms.com
medium.mica.edu
danube.mica.edu
online.mica.edu
duo.mica.edu
inside.mica.edu
discover.mica.edu
helpdesk.mica.edu
cstst90.mica.edu
inside.mica.edu
inside.mica.edu
jonesfalls.mica.edu
alertus.mica.edu
bahamut.mica.edu
mica.edu
Maryland Institute College of Art (THE MARYLAND INSTITUTE)
whatsupgold.mica.edu
libguides.mica.edu
vpn.mica.edu
csdev90.mica.edu
ptprd85.mica.edu

Certificate

The complete raw certificate details for ldapserver3.mica.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHHDCCBgSgAwIBAgIRAJ+5L0wJKYtpmItuntJVI1UwDQYJKoZIhvcNAQELBQAw
djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix
EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT
FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTgwNTI2MDAwMDAwWhcNMjAwNTI1
MjM1OTU5WjCBzTELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTIxMjE3MREwDwYDVQQI
EwhNYXJ5bGFuZDESMBAGA1UEBxMJQmFsdGltb3JlMSIwIAYDVQQJExkxMzAwIFcg
TW91bnQgUm95YWwgQXZlbnVlMSowKAYDVQQKEyFNYXJ5bGFuZCBJbnN0aXR1dGUg
Q29sbGVnZSBvZiBBcnQxGDAWBgNVBAsTD01JQ0EgVGVjaG5vbG9neTEdMBsGA1UE
AxMUbGRhcHNlcnZlcjMubWljYS5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
ggEKAoIBAQCu11B8XMd/YjLUvid8TdUAAJqxAER7dXwYUhkgjIgHjrIg2kOQFb7D
CdopsKjYosG/zpLzeFz3owQeTCV4T2yI9bXf9/c16sL634r1tjPMAn4X+crwbrGL
hzzoayAD+9V81loITbgXFthiQXHu69dX2yHqKXO8bV6QSZU9Brx2B75puwCa5aEL
hIOcg3EzAbRXOUMYfWzhWBRH/S7rbdUX61mzmOWGOHjAF2trPqdhFqN+YKcpsErc
qJNsEZg4S72XAAw7fkwhRwElraPIm2M8ZNOlTkhL3DOUGZ5WG4im0GPW9lD4YS8U
sbUJeHzIeDccNUqz2ic/qPtFs50Gcw0tAgMBAAGjggNLMIIDRzAfBgNVHSMEGDAW
gBQeBaN3j2yW4luHS6a0hqxxAAznODAdBgNVHQ4EFgQUHQ4zNk0lBauze4uti2PH
dKvFNqswDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYI
KwYBBQUHAwEGCCsGAQUFBwMCMGcGA1UdIARgMF4wUgYMKwYBBAGuIwEEAwEBMEIw
QAYIKwYBBQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3JlcG9z
aXRvcnkvY3BzX3NzbC5wZGYwCAYGZ4EMAQICMEQGA1UdHwQ9MDswOaA3oDWGM2h0
dHA6Ly9jcmwuaW5jb21tb24tcnNhLm9yZy9JbkNvbW1vblJTQVNlcnZlckNBLmNy
bDB1BggrBgEFBQcBAQRpMGcwPgYIKwYBBQUHMAKGMmh0dHA6Ly9jcnQudXNlcnRy
dXN0LmNvbS9JbkNvbW1vblJTQVNlcnZlckNBXzIuY3J0MCUGCCsGAQUFBzABhhlo
dHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMB8GA1UdEQQYMBaCFGxkYXBzZXJ2ZXIz
Lm1pY2EuZWR1MIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdQDuS723dc5guuFC
aR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWOdT8uaAAAEAwBGMEQCIFaA91Bt/xUy
TehWEUANc3n+SsiIuH8Lu+t72KRDPGvIAiAesiet7r73Xijrr9vWfFMlcrMGs7x6
X5IxsNtrtFOgiAB3AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAAB
Y51PzCUAAAQDAEgwRgIhAOeIW2qeOCA65DY2+AxQfOoPUCiZ+NS1/XBqIyfeKe1D
AiEAuHCmuRyEqT+PmroDEk0Tm1M38/8r8gmRgTSuEsepDMIAdwBVgdTCFpA2AUrq
C5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWOdT8yCAAAEAwBIMEYCIQDEyOLyzBIf
rD9t/OgkfAH5XpJrDvSP2O6L0R085JGzjgIhAPTBJ8RquhhhqdRaKQ7y4pVC+Rww
u6lx92wZph1AnPyuMA0GCSqGSIb3DQEBCwUAA4IBAQAULeLWf1mZOna57jHeK7IN
bbfiymZCaycxtsplxN2fs6KnGsPujvPK+6BJ9lz3cNnB8XgniecrhdJn0sRzQLXB
QSQihLBrOGazlqpZMBGMgU+AGBwU0hOxYTapYAPZKASdZOffSQHGMp2ZUCalh21f
0QOrq3ykgm7YAPd8pSY8IbGXydwDp4RBTjg9Ms2HhleNCL0nB0CVJezU8TeTsdKm
E2zBE7yAxr8EtgFf43vN5KRSGxRUiesZwhKekgqiNKLSykjw9GJfenTONxNk9/qm
8uCzY2jnHNmYxM1yh4CK7yX/bCZCECCS9bLa6tYdWPgD5mI5PQIwvvOjbFITNMgI
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtdQfFzHf2Iy1L4nfE3V
AACasQBEe3V8GFIZIIyIB46yINpDkBW+wwnaKbCo2KLBv86S83hc96MEHkwleE9s
iPW13/f3NerC+t+K9bYzzAJ+F/nK8G6xi4c86GsgA/vVfNZaCE24FxbYYkFx7uvX
V9sh6ilzvG1ekEmVPQa8dge+absAmuWhC4SDnINxMwG0VzlDGH1s4VgUR/0u623V
F+tZs5jlhjh4wBdraz6nYRajfmCnKbBK3KiTbBGYOEu9lwAMO35MIUcBJa2jyJtj
PGTTpU5IS9wzlBmeVhuIptBj1vZQ+GEvFLG1CXh8yHg3HDVKs9onP6j7RbOdBnMN
LQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 212308785546057879019420600014445290325
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-26 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-25 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '21217'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Baltimore'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1300 W Mount Royal Avenue'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland Institute College of Art'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MICA Technology'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ldapserver3.mica.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22071640550775163930076445629624288903495677334016589864069923520967836255636455096662799871785378223816959700413746074593410951137739544723765487791029662953455597791484085662378970632613700761307994805249011323159457978525241120854185301329963911125678440694552212756752013338738931374802601968207881882083917957171249435884574185171097063592396317146410031472113488491194867447295377084591527587642770250820187077578460446344135235986574367887917339698873797624326738576652594978347978163085810632599031623139802388720770029356894725773545128259092356995673841563049307960346014834999378406327647580438175291739437
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1d0e33364d2505abb37b8bad8b63c774abc536ab
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldapserver3.mica.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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