mail.uchospitals.edu

- The University of Chicago -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 05:30:52:05:b0:fe:05:34:24:c9:13:d7:b9:23:d6:44 was issued on by Internet2.

With 42 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

The University of Chicago

Organization: The University of Chicago
Organization unit: IT Security
Address: 5801 South Ellis Avenue
Postal code: 60637
State / Province: Illinois
Locality: Chicago
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 05:30:52:05:b0:fe:05:34:24:c9:13:d7:b9:23:d6:44
Serial Number (int): 6897033836639016559437576527518357060
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 16:71:cd:07:ae:9f:0e:c5:ad:aa:eb:34:60:b4:44:c5:8c:54:57:69
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 90:2d:6f:f0:be:c3:72:ec:eb:10:14:75:0f:15:da:de:a7:d9:d1:60
Fingerprint (sha256): a8:49:2e:54:ad:a6:2b:3e:38:92:b4:1b:d6:54:dd:9b:24:bb:e6:f1:e8:49:76:32:55:48:b2:2c:75:50:32:64

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate mail.uchospitals.edu

42

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mail.uchospitals.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mail.uchospitals.edu
autodiscover.airway.bsd.uchicago.edu
autodiscover.airway.uchicago.edu
autodiscover.airway2.bsd.uchicago.edu
autodiscover.airway2.uchicago.edu
autodiscover.arc-1.bsd.uchicago.edu
autodiscover.babies.bsd.uchicago.edu
autodiscover.bsd.uchicago.edu
autodiscover.bsdad.uchicago.edu
autodiscover.bsdadtest.uchicago.edu
autodiscover.cummings.bsd.uchicago.edu
autodiscover.dacc.bsd.uchicago.edu
autodiscover.dacc.uchicago.edu
autodiscover.drugs.bsd.uchicago.edu
autodiscover.familymedicine.bsd.uchicago.edu
autodiscover.founder.uchicago.edu
autodiscover.genetics.bsd.uchicago.edu
autodiscover.genetics.uchicago.edu
autodiscover.health.bsd.uchicago.edu
autodiscover.mbsd.uchicago.edu
autodiscover.mcdmail.uchicago.edu
autodiscover.medicine.bsd.uchicago.edu
autodiscover.moemail.uchicago.edu
autodiscover.neurology.bsd.uchicago.edu
autodiscover.peds.bsd.uchicago.edu
autodiscover.radiology.bsd.uchicago.edu
autodiscover.radonc.bsd.uchicago.edu
autodiscover.radonc.uchicago.edu
autodiscover.radonc.uchospitals.edu
autodiscover.spectrum.bsd.uchicago.edu
autodiscover.surgery.bsd.uchicago.edu
autodiscover.uchad.uchospitals.edu
autodiscover.uchicagomedicine.org
autodiscover.uchospitals.edu
autodiscover.uhs.bsd.uchicago.edu
autodiscover.watson.uchicago.edu
autodiscover.yoda.bsd.uchicago.edu
legacy.uchospitals.edu
mail.ha.uchospitals.edu
uchad.uchospitals.edu
uchospitals.edu
webmail.uchospitals.edu

Other certificates including the domain name uchospitals.edu

(limited to 100 certificates)
tls.automattic.com
interconapps-test.uchospitals.edu
incapsula.com
social.learning.uchospitals.edu
ocps.uchospitals.edu
gatekeeper4.uchospitals.edu
uchapps.uchad.uchospitals.edu
mail.uchospitals.edu
identity.uchospitals.edu
vsp.uchospitals.edu
wdprd6a.uchospitals.edu
tls.automattic.com
dw7epint02.uchad.uchospitals.edu
nids-qip.uchospitals.edu
carelinktest.uchospitals.edu
apidb02drn.uchad.uchospitals.edu
tls.automattic.com
dw2cccweb01.uchad.uchospitals.edu
interconapps.uchospitals.edu
tls.automattic.com
soagateway.uchospitals.edu
www-test.uchospitals.edu
expressionengine.uchicago.edu
dw4epcla01.uchad.uchospitals.edu
bmb.uchospitals.edu
tls.automattic.com
incapsula.com
inteconapps-test.uchospitals.edu
mail.uchospitals.edu
securemail.uchospitals.edu
mycharttst.uchospitals.edu
www.uchospitals.edu
dw4bxap01.uchad.uchospitals.edu
uchicagoapps.uchad.uchospitals.edu
bsc.uchad.uchospitals.edu
bsdsentry.uchospitals.edu
mail.uchospitals.edu
interconprod.ha.uchospitals.edu
expressionengine.uchicago.edu
mycharttest.uchospitals.edu
dl2lms01.uchospitals.edu
spwfepr01dar.uchad.uchospitals.edu
tls.automattic.com
sciencelife.uchospitals.edu
radpics.uchad.uchospitals.edu
tls.automattic.com
cw4mpall.uchad.uchospitals.edu
dw2epcla01.uchad.uchospitals.edu
jss.uchospitals.edu
ccdd1w9enf01.uchad.uchospitals.edu
uchicagoapps.uchad.uchospitals.edu
obixappts01ccd.uchad.uchospitals.edu
webapps.uchospitals.edu
honestbroker.uchospitals.edu
molbio.uchospitals.edu
intercondev.uchad.uchospitals.edu
cw2iscvcsql01.uchad.uchospitals.edu
bsdsentry.uchospitals.edu
wordpress.uchospitals.edu
webapps.uchospitals.edu
mail.uchospitals.edu
incapsula.com
bsdsentry.uchospitals.edu
incapsula.com
tls.automattic.com
sciencelife.uchospitals.edu
kuiper.uchad.uchospitals.edu
incapsula.com
webapps.uchospitals.edu
www.uchospitals.edu
identitydev.uchospitals.edu
nursing.uchospitals.edu
www.uchicagomedicine.org
incapsula.com
tls.automattic.com
icdmzpr01dar.uchad.uchospitals.edu
ca2trap01.uchospitals.edu
mydispense.uchospitals.edu
bcstest.uchad.uchospitals.edu
www.uchospitals.edu
incapsula.com
www.uchospitals.edu
incapsula.com
wordpress.uchospitals.edu
tls.automattic.com
incapsula.com
mail.uchospitals.edu
incapsula.com
ccdd1w9enf01.uchad.uchospitals.edu
dw4epcla01.uchad.uchospitals.edu
dw4bxap01.uchad.uchospitals.edu
d169l1trbo01.uchospitals.edu
incapsula.com
expressionengine.uchicago.edu
interconapps-test.uchospitals.edu
ca2trap01.uchospitals.edu
incapsula.com
mail.uchospitals.edu
ingallsestubtest.uchospitals.edu
obixfmdmts01ccd.uchad.uchospitals.edu

Certificate

The complete raw certificate details for mail.uchospitals.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAMFs0RWuUq3xc6AZV6U
iVOISV4XNTx3KnSJ5cUJUD5GSwQHlqejTtLFx0uqqd5ixzWet2J0g6rg0V2zXjHD
MwLeu/DDXciBgdWXRIjDD2Ev5FgpBKELyVKTOh+IdxTu5MnT38lldzwNPNBXKtE8
nknF+XtT8eJD+ehfOy7abKj9AOFnm9ARszeT/1V8iuXS6a18X46YC1OYdZjTjBdW
jXSpeZEPe84mcdZw2UBh1rg/+gHEuvHuk4zSkCktesZxEqkZzK3Tjaut7Ha2RaUK
5cCOMmJT1z5qGjvzD6sDVbeuPbAOB5Y26z8pdos5PvBE3po7TdyGRkLDqHGx8+uC
zwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 6897033836639016559437576527518357060
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-16 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-14 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '60637'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '5801 South Ellis Avenue'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The University of Chicago'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Security'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.uchospitals.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23734291668847989443044245547180601003814074627797817235981012605684977340701398640341095161766173057297709351212273596651326942352398900574769279005647526752785100674796948616827068375746231814086566847838191858871323441505223527308839024751826573582755729890810180217991194187764037486354353140052034052797809762130717394465177029644420075495047981358211539923369868149951370118108672040078280940758010766700033813632979924892714023577205091222882435353073977407473535130514648248501788790595123385700639681753949030288646531159977202143623994828010566908482509223246642116718513619398506037184243212543061094269647
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1671cd07ae9f0ec5adaaeb3460b444c58c545769
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes)
							016600760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d470000017359cc5c8d000004030047304502204fcec9b3df1adcc526e04b6cdc1d5f0577ed9641f6dc0a6c320a1fda9439d6f3022100ba6636868e9f8dea36cbf05ab85bab9928a09b0c4d16e58651cbb552ff72d8f0007500dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017359cc5cb4000004030046304402204f92d2b29f7c4d0556aa25241303fe12cf56f6fd228c39992d4d07085d781045022079d9f8963b3a424e2e6a0dc48c684cba57670e3b4c6c196a7daeef6249d2bf340075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017359cc5c85000004030046304402205fd06b408be22c7a695d4f10ebf8b1f954932528cfad59cb3de356b0e3e83bc4022048810fc9b850c34820529f362d6cb063dafbc8f44b6da7bd7ebc78d85a23e0b4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1456 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.airway.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.airway.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.airway2.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.airway2.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.arc-1.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.babies.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.bsdad.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.bsdadtest.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.cummings.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.dacc.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.dacc.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.drugs.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.familymedicine.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.founder.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.genetics.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.genetics.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.health.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.mbsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.mcdmail.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.medicine.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.moemail.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.neurology.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.peds.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.radiology.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.radonc.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.radonc.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.radonc.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.spectrum.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.surgery.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.uchad.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.uchicagomedicine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.uhs.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.watson.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.yoda.bsd.uchicago.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.ha.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uchad.uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uchospitals.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.uchospitals.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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