sakai.claremont.edu
- The Claremont Colleges, Inc. -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number 07:12:60:b8:c2:7b:44:a9:a4:85:0e:39:a2:19:40:e9 was issued on by Internet2.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
The Claremont Colleges, Inc.
Organization:
The Claremont Colleges, Inc.
State / Province:
California
Country: US
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:12:60:b8:c2:7b:44:a9:a4:85:0e:39:a2:19:40:e9Serial Number (int): 9400019063441005224068038052802019561
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: d7:0c:fa:63:97:2e:73:3a:9f:5f:ec:02:13:91:74:2d:f4:c1:4f:dd
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 15:d7:9a:bb:85:54:cc:ea:36:67:e4:9f:1e:3c:fc:06:d4:96:cb:83
Fingerprint (sha256): 2e:86:61:cd:7d:78:2e:0f:53:10:e1:2f:a0:3e:b9:72:46:11:07:79:16:12:40:33:7a:c2:78:db:ef:b4:d7:86
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate sakai.claremont.edu
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sakai.claremont.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sakai.claremont.edu
sakaidev.claremont.edu
sakaitest.claremont.edu
sakaidev.claremont.edu
sakaitest.claremont.edu
Other certificates including the domain name claremont.edu
(limited to 100 certificates)
oakmont.cusd.claremont.edu
tccsforms.services.claremont.edu
*.cx.claremont.edu
libguides.libraries.claremont.edu
sumnerdanbury.cusd.claremont.edu
scholarship.claremont.edu
sahs.cusd.claremont.edu
envirolabasia.claremont.edu
claremonthigh.cusd.claremont.edu
pressbooks.claremont.edu
footprints.claremont.edu
projects.claremont.edu
email.claremontmckenna.edu
condit.cusd.claremont.edu
www.cuc.claremont.edu
claremonthigh.cusd.claremont.edu
teaching.claremont.edu
edge-uc4.peopleadmin.com
*.claremont.edu
cwt-pub01-ms.voice.claremont.edu
elroble.cusd.claremont.edu
library.claremont.edu
teaching.claremont.edu
moodle.cusd.claremont.edu
elroble.cusd.claremont.edu
tccsforms.services.claremont.edu
services.claremont.edu
www.cusd.claremont.edu
faq.dml.georgetown.edu
webauth.claremont.edu
libguides.libraries.claremont.edu
library.claremont.edu
cards.cuc.claremont.edu
www.creativity.claremont.edu
*.claremont.edu
libraryfaq.erskine.edu
edge-uc4.peopleadmin.com
libraryfaq.erskine.edu
services.claremont.edu
scholarship.claremont.edu
edge_uc4.peopleadmin.com
*.claremont.edu
kecksci.claremont.edu
*.cuc.claremont.edu
colleges.claremont.edu
sumner.cusd.claremont.edu
webauth.claremont.edu
libguides.libraries.claremont.edu
creativity.claremont.edu
libraryfaq.erskine.edu
*.services.claremont.edu
email.claremontmckenna.edu
*.cusd.claremont.edu
library.claremont.edu
*.claremont.edu
www.cuc.claremont.edu
claremonthigh.cusd.claremont.edu
services.claremont.edu
creativity.claremont.edu
www.iplace.claremont.edu
dev.rimeta.claremont.edu
services.claremont.edu
sahs.cusd.claremont.edu
ccdl.claremont.edu
edge-uc4.peopleadmin.com
services.claremont.edu
claremont.edu
oakmont.cusd.claremont.edu
teaching.claremont.edu
webauth.claremont.edu
library.claremont.edu
engage.claremont.edu
claremont.pressbooks.pub
*.cx.claremont.edu
library.claremont.edu
elroble.cusd.claremont.edu
sycamore.cusd.claremont.edu
creativity.claremont.edu
claremont.edu
libraryfaq.erskine.edu
sakai.claremont.edu
sumnerdanbury.cusd.claremont.edu
cusdmail.cusd.claremont.edu
mail.jsd.claremont.edu
danbury.cusd.claremont.edu
library.claremont.edu
sahs.cusd.claremont.edu
*.cuc.claremont.edu
claremont.edu
creativity.claremont.edu
jobs.cuc.claremont.edu
cusdmail.cusd.claremont.edu
ri-meta.dev.rimeta.claremont.edu
mail.cuc.claremont.edu
sumnerdanbury.cusd.claremont.edu
cusd-adfs01.cusd.claremont.edu
webauth.claremont.edu
library.claremont.edu
faq.dml.georgetown.edu
cusdmail.cusd.claremont.edu
tccsforms.services.claremont.edu
*.cx.claremont.edu
libguides.libraries.claremont.edu
sumnerdanbury.cusd.claremont.edu
scholarship.claremont.edu
sahs.cusd.claremont.edu
envirolabasia.claremont.edu
claremonthigh.cusd.claremont.edu
pressbooks.claremont.edu
footprints.claremont.edu
projects.claremont.edu
email.claremontmckenna.edu
condit.cusd.claremont.edu
www.cuc.claremont.edu
claremonthigh.cusd.claremont.edu
teaching.claremont.edu
edge-uc4.peopleadmin.com
*.claremont.edu
cwt-pub01-ms.voice.claremont.edu
elroble.cusd.claremont.edu
library.claremont.edu
teaching.claremont.edu
moodle.cusd.claremont.edu
elroble.cusd.claremont.edu
tccsforms.services.claremont.edu
services.claremont.edu
www.cusd.claremont.edu
faq.dml.georgetown.edu
webauth.claremont.edu
libguides.libraries.claremont.edu
library.claremont.edu
cards.cuc.claremont.edu
www.creativity.claremont.edu
*.claremont.edu
libraryfaq.erskine.edu
edge-uc4.peopleadmin.com
libraryfaq.erskine.edu
services.claremont.edu
scholarship.claremont.edu
edge_uc4.peopleadmin.com
*.claremont.edu
kecksci.claremont.edu
*.cuc.claremont.edu
colleges.claremont.edu
sumner.cusd.claremont.edu
webauth.claremont.edu
libguides.libraries.claremont.edu
creativity.claremont.edu
libraryfaq.erskine.edu
*.services.claremont.edu
email.claremontmckenna.edu
*.cusd.claremont.edu
library.claremont.edu
*.claremont.edu
www.cuc.claremont.edu
claremonthigh.cusd.claremont.edu
services.claremont.edu
creativity.claremont.edu
www.iplace.claremont.edu
dev.rimeta.claremont.edu
services.claremont.edu
sahs.cusd.claremont.edu
ccdl.claremont.edu
edge-uc4.peopleadmin.com
services.claremont.edu
claremont.edu
oakmont.cusd.claremont.edu
teaching.claremont.edu
webauth.claremont.edu
library.claremont.edu
engage.claremont.edu
claremont.pressbooks.pub
*.cx.claremont.edu
library.claremont.edu
elroble.cusd.claremont.edu
sycamore.cusd.claremont.edu
creativity.claremont.edu
claremont.edu
libraryfaq.erskine.edu
sakai.claremont.edu
sumnerdanbury.cusd.claremont.edu
cusdmail.cusd.claremont.edu
mail.jsd.claremont.edu
danbury.cusd.claremont.edu
library.claremont.edu
sahs.cusd.claremont.edu
*.cuc.claremont.edu
claremont.edu
creativity.claremont.edu
jobs.cuc.claremont.edu
cusdmail.cusd.claremont.edu
ri-meta.dev.rimeta.claremont.edu
mail.cuc.claremont.edu
sumnerdanbury.cusd.claremont.edu
cusd-adfs01.cusd.claremont.edu
webauth.claremont.edu
library.claremont.edu
faq.dml.georgetown.edu
cusdmail.cusd.claremont.edu
Certificate
The complete raw certificate details for sakai.claremont.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIQBxJguMJ7RKmkhQ45ohlA6TANBgkqhkiG9w0BAQsFADB2 MQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUkxEjAQBgNVBAcTCUFubiBBcmJvcjES MBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNvbW1vbjEfMB0GA1UEAxMW SW5Db21tb24gUlNBIFNlcnZlciBDQTAeFw0yMzEwMTIwMDAwMDBaFw0yNDEwMDUy MzU5NTlaMGcxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMSUwIwYD VQQKExxUaGUgQ2xhcmVtb250IENvbGxlZ2VzLCBJbmMuMRwwGgYDVQQDExNzYWth aS5jbGFyZW1vbnQuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 2yAPypyCzsJ24fRSLXybOuQBJXfTrQOTKsnuBe8SXHbeFPG4xV/buyk0mjZr2NRF LNkd2YCvDUZqdbM3UafGi0SAfOFQRPQMZOHJixsEsF391+eJFPkJHKaj3yvtDu63 kdXB7SOeWYX39Eubz1RCBBSMJxUvysGU+xKSkagDCm1PxpFqmiMD3AEUnTAoGDua h3oR6HcHu6m4LTCIUr8ycK1hFMMliFCMkyorBH64KappHUxtxPAE0mpzT5j9jm/m QPkZiYfvo+oB5PnllAMEgmzvYBsU+ztOeHqWx6EkDBMruVXcQDWhEOtHtCRp5uKj ij5f7TbY4pOn8kmmiv7pgQIDAQABo4IDeDCCA3QwHwYDVR0jBBgwFoAUHgWjd49s luJbh0umtIascQAM5zgwHQYDVR0OBBYEFNcM+mOXLnM6n1/sAhORdC30wU/dMA4G A1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjBnBgNVHSAEYDBeMFIGDCsGAQQBriMBBAMBATBCMEAGCCsGAQUF BwIBFjRodHRwczovL3d3dy5pbmNvbW1vbi5vcmcvY2VydC9yZXBvc2l0b3J5L2Nw c19zc2wucGRmMAgGBmeBDAECAjBEBgNVHR8EPTA7MDmgN6A1hjNodHRwOi8vY3Js LmluY29tbW9uLXJzYS5vcmcvSW5Db21tb25SU0FTZXJ2ZXJDQS5jcmwwdQYIKwYB BQUHAQEEaTBnMD4GCCsGAQUFBzAChjJodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20v SW5Db21tb25SU0FTZXJ2ZXJDQV8yLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29j c3AudXNlcnRydXN0LmNvbTCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAdv+I Pwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGLJOZaZAAABAMARjBEAiB4 npql/Jsxk+E/7mDF0RPa5jLOIUHIPcYNk3PLmTuZaQIgHA+HHThLsTt5rRbMWuoo 5HmvCJFWQiSfROOQg0XUaVYAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0w SNf7qwAAAYsk5lq2AAAEAwBHMEUCIACG2bMs7+v4ufyWx6+H7bOASCI8HDs9yF0z uE8cnIqVAiEA4dHAZRTzjSc5kF6G0MCdKN2VjerCx7X08bUqzcWi99UAdQDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYsk5lqRAAAEAwBGMEQCIBpB B6/ieLLIUiy/5QwuVsfWxB5D7NhAk/6GQyBsUcy5AiAKwb6nLIuhkZyySxuc/5vk gnLoiGtxKYtSZiPE8XDW9TBPBgNVHREESDBGghNzYWthaS5jbGFyZW1vbnQuZWR1 ghZzYWthaWRldi5jbGFyZW1vbnQuZWR1ghdzYWthaXRlc3QuY2xhcmVtb250LmVk dTANBgkqhkiG9w0BAQsFAAOCAQEAmUUU+VN18A1vmrQcMj+6cZutwc14BKk2BcD/ OPlVGx1dtyX4VRzttU1dU+X2OVtk1CewBe0lx56ctsN3ke1K9Wtzs9Cw3OVQ8Xeo vgxPq8GmExibCjBeWk4IntOVGpTMKRdBILmBspCPZ2sPlZQUk5d/St7Aoq8ABLv7 ObXdg6LvKN0qWFQX7L48vVf1SNmqTCzvgkvhXeIhoEkiQ0oi39INe2qLgEhB7tm8 lLdEb78AKi+Q+aq+VbdRnVjZsP7Ex3x/HRtJu/BtV1G1t0hk4hJKRMORObDz5eMS ENv28Gb1+prekE34D6g5jlsws7EQWdSsoYXjaUhcr1JjzEWqyA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yAPypyCzsJ24fRSLXyb OuQBJXfTrQOTKsnuBe8SXHbeFPG4xV/buyk0mjZr2NRFLNkd2YCvDUZqdbM3UafG i0SAfOFQRPQMZOHJixsEsF391+eJFPkJHKaj3yvtDu63kdXB7SOeWYX39Eubz1RC BBSMJxUvysGU+xKSkagDCm1PxpFqmiMD3AEUnTAoGDuah3oR6HcHu6m4LTCIUr8y cK1hFMMliFCMkyorBH64KappHUxtxPAE0mpzT5j9jm/mQPkZiYfvo+oB5PnllAME gmzvYBsU+ztOeHqWx6EkDBMruVXcQDWhEOtHtCRp5uKjij5f7TbY4pOn8kmmiv7p gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9400019063441005224068038052802019561 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Claremont Colleges, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sakai.claremont.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27661998993869438606069174275183389880244788178970707094130376616447775007615405940093355553531593079733001121704142602723628668701372670728123294557637783665095260672010182841399194607576219124430967672755068871713547260764239477120293179018519192841040851707154874957553311380331379223789828569121327982546169338631964180889921176777558534105740963723181311590521768690054743358206802340180749577215308767534799930521035011205546784881143284723182647575374379283470736784763458755936345056200996306213609441993097361137594908245392112935158991208680332485414497558552624560640393595238023143064508121691625290131841 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d70cfa63972e733a9f5fec021391742df4c14fdd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sakai.claremont.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sakaidev.claremont.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sakaitest.claremont.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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