columbiadoctors.org

- Columbia University -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 38:ad:9d:35:63:f0:4e:17:38:e3:92:86:8b:84:c6:bd was issued on by Internet2.

With 48 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Columbia University

Organization: Columbia University
State / Province: New York
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 38:ad:9d:35:63:f0:4e:17:38:e3:92:86:8b:84:c6:bd
Serial Number (int): 75338223688811727572596154942666098365
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 66:41:27:71:2c:76:2d:e3:5c:e1:1e:62:47:e3:66:ee:55:2c:4b:9d
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 02:55:ea:ea:f1:b7:40:9a:be:51:a2:ed:f2:17:10:c6:05:d5:3c:1f
Fingerprint (sha256): e3:06:cf:a7:fd:50:12:33:82:f1:4a:8b:b6:63:32:24:24:f0:3f:29:ed:1f:11:7b:9e:44:52:c2:bf:b5:b0:76

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate columbiadoctors.org

48

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for columbiadoctors.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

columbiadoctors.org
*.columbiachildrenshealth.org
*.columbiadoctors-columbuscircle.com
*.columbiadoctors-columbuscircle.org
*.columbiadoctors.com
*.columbiadoctors.org
*.columbiadoctorsmidtown.com
*.columbiadoctorsmidtown.net
*.columbiadoctorsmidtown.org
*.columbiagynsurgery.org
*.columbialasik.org
*.columbiapresbyterian.com
*.columbiapresbyterian.net
*.legacygirlsstudy.org
*.midtownpeds.com
*.mycolumbiadoctors.com
*.mycolumbiadoctors.net
*.mycolumbiadoctors.org
*.pediatricsofnyc.com
*.westsidepeds.com
columbiachildrenshealth.org
columbiadoctors-columbuscircle.com
columbiadoctors-columbuscircle.org
columbiadoctors.com
columbiadoctorsmidtown.com
columbiadoctorsmidtown.net
columbiadoctorsmidtown.org
columbiagynsurgery.org
columbialasik.org
columbianps.com
columbianps.net
columbianps.org
columbianursepractitionergroup.com
columbiapresbyterian.com
columbiapresbyterian.net
harlempeds.org
legacygirlsstudy.org
midtownpeds.com
mycolumbiadoctors.com
mycolumbiadoctors.net
mycolumbiadoctors.org
pediatricsofnyc.com
westsidepeds.com
www.columbianps.com
www.columbianps.net
www.columbianps.org
www.columbianursepractitionergroup.com
www.harlempeds.org

Other certificates including the domain name columbiadoctors.org

(limited to 100 certificates)
forms.columbiadoctors.org
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
www.columbiadoctors.org
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
www.columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
5709198289534976-fe4.pantheonsite.io
columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
5709198289534976-fe4.pantheonsite.io
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
columbiapsychiatry.org
5709198289534976-fe4.pantheonsite.io
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
stage.forms.columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
forms.columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
columbiapsychiatry.org
5680163505307648-fe4.pantheonsite.io
columbiadoctors.org
columbiadoctors.org
www.columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
columbiadoctors.org
5680163505307648-fe4.pantheonsite.io
columbiadoctors.org
www.columbiadoctors.org
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io

Certificate

The complete raw certificate details for columbiadoctors.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1HCZjJJ5H+72Ovm9DNd
7hXBcvzASaR1lyVmsec4Dre7yGbXdbGoE2j6rcQgHvaznRm/xWEWdQC6wh+QZv81
3r9mgWydyDOlSOAkHbcs9WTa3c10ofjBPCOrqZGQCxgGHAQ0aqggY8nX/GfP/vCy
PtGPefVGikvxh1TDXwgqf9MYUN6WtBGTu5cETDZAhSExbcmcbKWUpWqz5B/P9ADA
HXMFkPaFrOwCnK/KjUndp7dXbtmc6N1ggnTdH2vkCstAJMotDY9kSq4k5qohKGhV
kHbNjck4UvnjRlinIIPAMzxO2EPQxK6Qkin3p2c4MD6nxFEhjEFJbLsr8N5LMaDU
PQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 75338223688811727572596154942666098365
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-11 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-05 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Columbia University'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'columbiadoctors.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23141926857706611507440552730459252688814740255808682930187387100625978446864472087382793520142580497413375929325819464002586214706632776603650235102722003275087148292585830366789271234884887917414100186698037211122274452814529627404676540928524811785434139765811665435296240266994031780684979704210569161674999934699661182538845592340223170277294890921337958455861061777199344573463181470427569084946158373678389316598159815558671651371966057768891914963104129135870971613825081576878839527321428329163625566866724393493740887915896423569757878599959324833983373164755191690224353930443741043604048455327333912466493
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							664127712c762de35ce11e6247e366ee552c4b9d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1206 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiachildrenshealth.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctors-columbuscircle.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctors-columbuscircle.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctors.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctorsmidtown.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctorsmidtown.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiadoctorsmidtown.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiagynsurgery.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbialasik.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiapresbyterian.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.columbiapresbyterian.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.legacygirlsstudy.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.midtownpeds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mycolumbiadoctors.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mycolumbiadoctors.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mycolumbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pediatricsofnyc.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.westsidepeds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiachildrenshealth.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctors-columbuscircle.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctors-columbuscircle.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctors.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctorsmidtown.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctorsmidtown.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctorsmidtown.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiagynsurgery.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbialasik.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbianps.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbianps.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbianps.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbianursepractitionergroup.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiapresbyterian.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiapresbyterian.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'harlempeds.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacygirlsstudy.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'midtownpeds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycolumbiadoctors.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycolumbiadoctors.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycolumbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pediatricsofnyc.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'westsidepeds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.columbianps.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.columbianps.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.columbianps.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.columbianursepractitionergroup.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.harlempeds.org'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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