www.uchicagomedicine.org

- The University of Chicago -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 59:b2:8d:34:96:cd:07:95:47:79:a1:b4:3a:21:30:10 was issued on by Internet2.

With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

The University of Chicago

Organization: The University of Chicago
State / Province: Illinois
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 59:b2:8d:34:96:cd:07:95:47:79:a1:b4:3a:21:30:10
Serial Number (int): 119228384451965894710095919942356512784
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 2e:e4:99:b6:3d:65:c1:9c:88:a5:99:5e:9a:b5:63:6f:14:22:51:4a
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 57:84:a7:30:4f:47:60:be:cc:c5:a4:6b:e9:f8:df:2c:60:12:f1:c6
Fingerprint (sha256): 2e:2e:dc:ed:57:7d:74:14:e6:de:00:19:ec:7c:67:4c:8b:60:4d:5f:2c:be:2f:b1:a5:3c:21:29:c0:8c:ee:db

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate www.uchicagomedicine.org

30

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.uchicagomedicine.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.uchicagomedicine.org
app.m.uchicagomedicine.org
birthcenter.uchospitals.edu
cancer.uchicago.edu
cureceliacdisease.org
healthlibrary.uchicagomedicine.org
healthlibrary.uchospitals.edu
images.m.uchicagomedicine.org
ingalls.org
kovlerdiabetescenter.org
m.uchicagomedicine.org
m.uchospitals.edu
pages.uchicagomedicine.org
prod.uchicagomedicine.org
riskonnect.uchospitals.edu
sciencelife.uchospitals.edu
stage.uchicagomedicine.org
trauma.uchospitals.edu
uchicagokidshospital.org
uchicagomedicine.org
uchicagomedicine.pharmacy
uchospitals.edu
ucmleave.uchicagomedicine.org
ucmleave.uchospitals.edu
www.cureceliacdisease.org
www.ingalls.org
www.kovlerdiabetescenter.org
www.uchicagokidshospital.org
www.uchicagomedicine.pharmacy
www.uchospitals.edu

Other certificates including the domain name uchicagomedicine.org

(limited to 100 certificates)
mail.uchospitals.edu
pages.uchicagomedicine.org
san-15-s13.tlsprovisioning.exacttarget.com
mail.uchospitals.edu
community.uchicagomedicine.org
pages.uchicagomedicine.org
community.uchicagomedicine.org
uchicagomedicine.org
www.uchicagomedicine.org
healthlibrary.uchicagomedicine.org
uat.uchicagomedicine.org
uchicagomedicine.org
www.uchicagomedicine.org
pages.uchicagomedicine.org
healthlibrary.uchicagomedicine.org
www.uchicagomedicine.org
uat.uchicagomedicine.org
www.uchicagomedicine.org
mail.uchospitals.edu
uat.uchicagomedicine.org
www.uchicagomedicine.org
www.uchicagomedicine.org
www.uchicagomedicine.org
www.uchicagomedicine.org
*.uchicagomedicine.org
www.uchicagomedicine.org

Certificate

The complete raw certificate details for www.uchicagomedicine.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIJrDCCCJSgAwIBAgIQWbKNNJbNB5VHeaG0OiEwEDANBgkqhkiG9w0BAQsFADB2
MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES
MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW
SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMzA2MjYwMDAwMDBaFw0yNDA2MjUy
MzU5NTlaMGcxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhJbGxpbm9pczEiMCAGA1UE
ChMZVGhlIFVuaXZlcnNpdHkgb2YgQ2hpY2FnbzEhMB8GA1UEAxMYd3d3LnVjaGlj
YWdvbWVkaWNpbmUub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA
1N+lrnw4U4kVSZeh+fcI+HySrVX5FIYVQoIl6rlsgRNx6J7TB68pMirLaoxbOL1k
2nkf0x0OZpQBS/TTPhpDf1GwBGwZzPfuIM/mUgtemGUPBilAhyjnOxZisj7rOBpH
jvv0Ogr73Z3tooyLA+Qo5m4N5e8D3pSEKni8RnlfPLPECcdWMlCeTjcoimczTkfr
KRW09EgsWDHStyk76t/yig/Oi6nkucWwH/2a4VICpYOavYDblyih7QVEXvmbdDNd
g9TJhk7pEbBQWaB0Du6/ANY7zxCFahcfwlgS19ny4fC6ehvH1TZGd6vn6wVX4pg5
6sGLL8o9rf+y9tOrovcmSQIDAQABo4IGQzCCBj8wHwYDVR0jBBgwFoAUHgWjd49s
luJbh0umtIascQAM5zgwHQYDVR0OBBYEFC7kmbY9ZcGciKWZXpq1Y28UIlFKMA4G
A1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMB
BggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMBATBCMEAGCCsGAQUF
BwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9yZXBvc2l0b3J5L2Nw
c19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1hjNodHRwOi8vY3Js
LmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJDQS5jcmwwdQYIKwYB
BQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20v
SW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29j
c3AudXNlcnRydXN0LmNvbTCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYAdv+I
Pwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGI+TaNOgAABAMARzBFAiBK
r8z9MIgM1g5RwKJSl2Z0DBH1S5f3S226F0NA+Es1oAIhAKC9luCVt7/M03WnPtHe
UgW2pMyxUr+vTPbWUc1zqatjAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9
MEjX+6sAAAGI+TaNoAAABAMARzBFAiEAt5zCMTCzTEEDli+/2gmkHAs3voqCJZRL
lQWcuILlRucCIFscL2PdVex/UpuZhnSsIk+QVaw5fd6lgcV6iby+QUSlAHcA7s3Q
ZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGI+TaNaAAABAMASDBGAiEA
/QRvhYTF+hvOPNVhKKhJWLmNTM+Z9xM642d6PHgjyR8CIQDQVdDbk7XFa9ZI0AA6
HrzzH5Jx4lb6YKaxDVOCbMJuDTCCAxUGA1UdEQSCAwwwggMIghh3d3cudWNoaWNh
Z29tZWRpY2luZS5vcmeCGmFwcC5tLnVjaGljYWdvbWVkaWNpbmUub3JnghtiaXJ0
aGNlbnRlci51Y2hvc3BpdGFscy5lZHWCE2NhbmNlci51Y2hpY2Fnby5lZHWCFWN1
cmVjZWxpYWNkaXNlYXNlLm9yZ4IiaGVhbHRobGlicmFyeS51Y2hpY2Fnb21lZGlj
aW5lLm9yZ4IdaGVhbHRobGlicmFyeS51Y2hvc3BpdGFscy5lZHWCHWltYWdlcy5t
LnVjaGljYWdvbWVkaWNpbmUub3JnggtpbmdhbGxzLm9yZ4IYa292bGVyZGlhYmV0
ZXNjZW50ZXIub3JnghZtLnVjaGljYWdvbWVkaWNpbmUub3JnghFtLnVjaG9zcGl0
YWxzLmVkdYIacGFnZXMudWNoaWNhZ29tZWRpY2luZS5vcmeCGXByb2QudWNoaWNh
Z29tZWRpY2luZS5vcmeCGnJpc2tvbm5lY3QudWNob3NwaXRhbHMuZWR1ghtzY2ll
bmNlbGlmZS51Y2hvc3BpdGFscy5lZHWCGnN0YWdlLnVjaGljYWdvbWVkaWNpbmUu
b3JnghZ0cmF1bWEudWNob3NwaXRhbHMuZWR1ghh1Y2hpY2Fnb2tpZHNob3NwaXRh
bC5vcmeCFHVjaGljYWdvbWVkaWNpbmUub3Jnghl1Y2hpY2Fnb21lZGljaW5lLnBo
YXJtYWN5gg91Y2hvc3BpdGFscy5lZHWCHXVjbWxlYXZlLnVjaGljYWdvbWVkaWNp
bmUub3Jnghh1Y21sZWF2ZS51Y2hvc3BpdGFscy5lZHWCGXd3dy5jdXJlY2VsaWFj
ZGlzZWFzZS5vcmeCD3d3dy5pbmdhbGxzLm9yZ4Icd3d3LmtvdmxlcmRpYWJldGVz
Y2VudGVyLm9yZ4Icd3d3LnVjaGljYWdva2lkc2hvc3BpdGFsLm9yZ4Idd3d3LnVj
aGljYWdvbWVkaWNpbmUucGhhcm1hY3mCE3d3dy51Y2hvc3BpdGFscy5lZHUwDQYJ
KoZIhvcNAQELBQADggEBAG/CWSB3smhueg1MJ8WNmk5Q/OxCgg/+LDIa4jBukU7z
tBoHaGl6/C3C5gKowY9cJNWz5zgsOqvxiCwVftkektXpD0DfJJLtm1kl3cN0SMq4
Jyx2iUe+3LMXI+yG1WHirq2w5NMqLkSeFHz22oSC+yN+rNrKnSc6uvyB8HARVKsN
hsSi7CYDUbaftTTFUDNRxk2gmISuL2QN5zixQx++qZKmTG1RH6AJOw4+RplsvVBT
UKh1zI/dgqkGHQ9njbssssWz4W015Rc57GR6sZV8X3slOwkRkskUwAZC+nGz9ZFI
cO6P7I0D2+K9N2Ovcd9vks59nd3H6ubyOziymRLpAAg=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1N+lrnw4U4kVSZeh+fcI
+HySrVX5FIYVQoIl6rlsgRNx6J7TB68pMirLaoxbOL1k2nkf0x0OZpQBS/TTPhpD
f1GwBGwZzPfuIM/mUgtemGUPBilAhyjnOxZisj7rOBpHjvv0Ogr73Z3tooyLA+Qo
5m4N5e8D3pSEKni8RnlfPLPECcdWMlCeTjcoimczTkfrKRW09EgsWDHStyk76t/y
ig/Oi6nkucWwH/2a4VICpYOavYDblyih7QVEXvmbdDNdg9TJhk7pEbBQWaB0Du6/
ANY7zxCFahcfwlgS19ny4fC6ehvH1TZGd6vn6wVX4pg56sGLL8o9rf+y9tOrovcm
SQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 119228384451965894710095919942356512784
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-26 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-25 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The University of Chicago'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.uchicagomedicine.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26872805194370860060894925219862126341634637269717930161717562948065395996307381405951072173867589787543793468291131334443765012310301533041371362358018973409838343393521541372338599378661072355957566946341508185312906496300998615997273674579807610723505587579535440402934704633286244890645789321971034185558052546351409470530239654542231942350501497649889772689997305186496126690228889074880024531419904063867994457244961808614246011570715717876649242450874377934475209877340856440950735794033453672816951358384948026877091778205447869167955336167990207419196070363793501647901762863348583266433845837190263599474249
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2ee499b63d65c19c88a5995e9ab5636f1422514a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (780 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.m.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'birthcenter.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cancer.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cureceliacdisease.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthlibrary.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthlibrary.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.m.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ingalls.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kovlerdiabetescenter.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pages.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riskonnect.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sciencelife.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trauma.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uchicagokidshospital.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uchicagomedicine.pharmacy'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucmleave.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucmleave.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cureceliacdisease.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ingalls.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kovlerdiabetescenter.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uchicagokidshospital.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uchicagomedicine.pharmacy'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uchospitals.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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