idp.utimco.org

- The University of Texas System -

Issued by InCommon Server CA

About this certificate

This digital certificate with serial number f8:ce:9b:a4:28:24:35:4e:d5:01:66:13:ae:56:9c:b8 was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

The University of Texas System

Organization: The University of Texas System
Organization unit: UTIMCO
Address: 601 Colorado Street
Postal code: 78701
State / Province: TX
Locality: Austin
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): f8:ce:9b:a4:28:24:35:4e:d5:01:66:13:ae:56:9c:b8
Serial Number (int): 330721312886847702781866730838094683320
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 1a:a5:91:a0:56:ad:31:91:81:c8:ca:8e:65:35:29:cb:45:e8:01:8b
AuthorityKeyId: 48:4f:5a:fa:2f:4a:9a:5e:e0:50:f3:6b:7b:55:a5:de:f5:be:34:5d

Fingerprint (sha1): cd:40:15:4c:a0:fe:6b:0d:b5:93:58:b0:a9:08:c4:ba:c8:b4:83:90
Fingerprint (sha256): 86:3c:54:f6:50:35:ac:31:e5:12:c8:09:7a:48:0c:49:e0:9e:e1:2e:21:d3:3c:32:08:d7:92:cb:62:59:f8:f0

Issuing Certificate URL: http://cert.incommon.org/InCommonServerCA.crt

Revocation information

OCSP Server: http://ocsp.incommon.org
CRL Distribution Point: http://crl.incommon.org/InCommonServerCA.crl

Check the revocation status for certificate idp.utimco.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for idp.utimco.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

idp.utimco.org

Other certificates including the domain name utimco.org

(limited to 100 certificates)
cps.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
aus.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
owa.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
cps.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
owa.utimco.org
www.utimco.org
owa.utimco.org
servicedesk.energyexemplar.com
owa.utimco.org
sni.cloudflaressl.com
utimco.org
utimco.org
support.mastercardfdn.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
utmsvmbam.utimco.org
owa.utimco.org
owa.utimco.org
assetmgmt.jennycraig.com
owa.utimco.org
www.uat.utimco.org
helpdesk.fintonhouse.org.uk
remote.utimco.org
helpdesk.fintonhouse.org.uk
applicationsupport.fqml.com
remote.utimco.org
desktopcentral.utimco.org
helpdesk.fintonhouse.org.uk
owa.utimco.org
servicedesk.gmhec.org
helpdesk.mvplaw.com
www.utimco.org
shoretel.utimco.org
helpdesk.fintonhouse.org.uk
cps.utimco.org
mobility.utimco.org
helpdesk.fintonhouse.org.uk
www.utimco.org
utmsvfaz.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
fas.utimco.org
www.utimco.org
helpline.petron.com
servicedesk.digicelgroup.com
helpdesk.fintonhouse.org.uk
www.uat.utimco.org
helpdesk.fintonhouse.org.uk
helpline.petron.com
helpdesk.fintonhouse.org.uk
www.uat.utimco.org
helpdesk.neopharm.ca
helpdesk.utimco.org
remote.utimco.org
remote.utimco.org
remote2.utimco.org
helpdesk.fintonhouse.org.uk
support.embelton.com
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
owa.utimco.org
utmsvmbam.utimco.org
utmsvmbam.utimco.org
helpdesk.fintonhouse.org.uk
utimco.org
utmsvmbam.utimco.org
utmsvmbam.utimco.org
sni.cloudflaressl.com
staging.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
www.utimco.org
helpdesk.fintonhouse.org.uk
owa.utimco.org
shoretel.utimco.org
helpdesk.fintonhouse.org.uk
helpdesk.fintonhouse.org.uk
utmsvmbam.utimco.org
www.utimco.org
shoretel.utimco.org
helpdesk.brandontrust.org
www.uat.utimco.org
idp.utimco.org
helpdesk.fintonhouse.org.uk
utmsvfaz.utimco.org
ayudati.auteco.com.co
helpdesk.fintonhouse.org.uk
www.utimco.org
helpdesk.fintonhouse.org.uk
staging.utimco.org

Certificate

The complete raw certificate details for idp.utimco.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+O8LRq/mrzbiI0YhsYx
LJbxdlgtrMYnFTtx6kg+X2WBnjaPNWWL473RkRIbuZJuHoAVPakqKEyd4FcuD3VK
4rg27oIMQIWfM9MCox0liAIhvPLFl6Q2Uah4G/4De1o5QwTDss/eGYVt2cRE0eWN
Z9BJPXxQFlUxIgc+5R+cPzcaJypoR7SRMEJx7ZpiV5zyrdCPfFjnWS03OwYxUNPP
86uiQGACJubgeMbZiewThdWzFYpyYC1lJymK4VYvlSwuPStWyeIB2ij883UIL8eE
i9A+QRuvpvzvPIAiT2VpqfetSxosKNVZIoXpOESL/ZkbZOe/Oij5LAlxEDxavxuA
mwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 330721312886847702781866730838094683320
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-12-11 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-10 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '78701'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TX'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Austin'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '601 Colorado Street'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The University of Texas System'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UTIMCO'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'idp.utimco.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23213910153963476170289447734270554899979764792520910705255165651857462848186268754841583277036611956696899268219681785422205949899413524759702299453316140802695207979039467277452103045557740906300971086750327999659926228353606033248695663607543631250205437840381562784999953554063393608047526177968185706346896410800833883815702558143759549494918901659338416461330006739063214566826660957071236793267012196026508651902445261892987657031271004499679075854491483421788497542762298682488434051818988594797315677545297164683467526597663126264900327722077118444610142353666081838474006321571838512660249291667942521143451
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 484f5afa2f4a9a5ee050f36b7b55a5def5be345d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1aa591a056ad319181c8ca8e653529cb45e8018b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon.org/InCommonServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.incommon.org/InCommonServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.incommon.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idp.utimco.org'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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