www.shop.rwth-aachen.de
- RWTH Aachen University -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 50:68:c4:01:a0:dc:e2:88:c8:36:4a:1f:e9:ac:22:ed was issued on by GEANT Vereniging.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RWTH Aachen University
Organization:
RWTH Aachen University
State / Province:
Nordrhein-Westfalen
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 50:68:c4:01:a0:dc:e2:88:c8:36:4a:1f:e9:ac:22:edSerial Number (int): 106882214017376005177078719631432884973
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 3f:6c:75:0a:9d:3f:60:0c:84:4c:4a:8d:1e:85:70:8a:67:5b:f3:19
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 3d:d1:e6:77:7e:38:75:65:39:a7:56:15:bd:40:dd:95:75:dc:e2:aa
Fingerprint (sha256): 00:74:63:14:22:df:e3:9c:1d:78:15:fa:72:fd:39:86:d6:34:38:e1:6f:91:a8:f7:4e:1c:a3:20:cf:79:ef:fc
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate www.shop.rwth-aachen.de
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.shop.rwth-aachen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.shop.rwth-aachen.de
rwth-aachen-shop.de
rwth-shop.de
shop.rwth-aachen.de
www.rwth-aachen-shop.de
www.rwth-shop.de
rwth-aachen-shop.de
rwth-shop.de
shop.rwth-aachen.de
www.rwth-aachen-shop.de
www.rwth-shop.de
Other certificates including the domain name rwth-aachen.de
(limited to 100 certificates)
frp.landeco.rwth-aachen.de
vpn.imr.rwth-aachen.de
red.isea.rwth-aachen.de
git.isea.rwth-aachen.de
raum.arch.rwth-aachen.de
asterix.isf.rwth-aachen.de
ds10.isf.rwth-aachen.de
studibv.cms.rwth-aachen.de
zk-itc.key.rwth-aachen.de
sapportal.zhv.rwth-aachen.de
mail.dorf.rwth-aachen.de
www.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
itv.rwth-aachen.de
studiolo.arch.rwth-aachen.de
kaffeekasse.embedded.rwth-aachen.de
mark.tvk.rwth-aachen.de
sbc-2-extdfn.pbx.rwth-aachen.de
metafa.fsmpi.rwth-aachen.de
www.shop.rwth-aachen.de
www.rwth-aachen.de
bl.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
admin-test.streaming.rwth-aachen.de
gigamove.rwth-aachen.de
wahlomat.stud.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
messenger.ima.rwth-aachen.de
cloud.halifax.rwth-aachen.de
bas47.itc.rwth-aachen.de
web-std4.itc.rwth-aachen.de
fghw-community.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
alu.w2k.metallurgie.rwth-aachen.de
bolm.oc.rwth-aachen.de
bolm.oc.rwth-aachen.de
exam.kbsg.rwth-aachen.de
vpn.meditec.rwth-aachen.de
www.hitnet.rwth-aachen.de
fs22.hpc.itc.rwth-aachen.de
anyvpn.embedded.rwth-aachen.de
vpn2.noc.rwth-aachen.de
ifaic.ika.rwth-aachen.de
lbd.arch.rwth-aachen.de
switch-altbau-og1.isf.rwth-aachen.de
htg.ifht.rwth-aachen.de
igcs-chennai.org
files.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
formular-ts.zhv.rwth-aachen.de
wzl-lotus2.wzl.rwth-aachen.de
mail.rwth-aachen.de
ex10-casht01.zhv.rwth-aachen.de
helfer.halifax.rwth-aachen.de
www.water.rwth-aachen.de
fachschaften.rwth-aachen.de
test.sabio.itc.rwth-aachen.de
cucm-sub-22.pbx.rwth-aachen.de
mail.ind.rwth-aachen.de
www.ideal.rwth-aachen.de
vpn.lbz.rwth-aachen.de
www-i2.informatik.rwth-aachen.de
oauth.campus.rwth-aachen.de
vmhost-esxi-smq2-idrac.e3d.rwth-aachen.de
www.fskowi.rwth-aachen.de
www.lfb.rwth-aachen.de
d-mo05.devlef.campus.rwth-aachen.de
noc96.rz.rwth-aachen.de
autodiscover.ad.ibac.rwth-aachen.de
cloud10.dbis.rwth-aachen.de
my.ram.rwth-aachen.de
www.hitnet.rwth-aachen.de
vpn.e3d.rwth-aachen.de
nc19.itv.rwth-aachen.de
otrs.ias.rwth-aachen.de
institut2a.physik.rwth-aachen.de
mail-out-4.itc.rwth-aachen.de
quic.comsys.rwth-aachen.de
reifen-db.ika.rwth-aachen.de
vispa.physik.rwth-aachen.de
malta.informatik.rwth-aachen.de
ansible.automata.rwth-aachen.de
vpn.iwm.rwth-aachen.de
www.rwth-aachen.de
vpn.lbz.rwth-aachen.de
dev.iww.rwth-aachen.de
auger.physik.rwth-aachen.de
vreiff3.arch.rwth-aachen.de
belegi.halifax.rwth-aachen.de
www.embedded.rwth-aachen.de
www.compecon.rwth-aachen.de
calculus.itmc.rwth-aachen.de
for2591.ukaachen.de
vmhost-esxi-bf2-idrac.e3d.rwth-aachen.de
seko-rocket.itc.rwth-aachen.de
mail.rwth-aachen.de
transaction.medien.rwth-aachen.de
boreas.klinikum.rwth-aachen.de
vorreiter.iaw.rwth-aachen.de
backend.i11freunde.rwth-aachen.de
vpn.imr.rwth-aachen.de
red.isea.rwth-aachen.de
git.isea.rwth-aachen.de
raum.arch.rwth-aachen.de
asterix.isf.rwth-aachen.de
ds10.isf.rwth-aachen.de
studibv.cms.rwth-aachen.de
zk-itc.key.rwth-aachen.de
sapportal.zhv.rwth-aachen.de
mail.dorf.rwth-aachen.de
www.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
itv.rwth-aachen.de
studiolo.arch.rwth-aachen.de
kaffeekasse.embedded.rwth-aachen.de
mark.tvk.rwth-aachen.de
sbc-2-extdfn.pbx.rwth-aachen.de
metafa.fsmpi.rwth-aachen.de
www.shop.rwth-aachen.de
www.rwth-aachen.de
bl.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
admin-test.streaming.rwth-aachen.de
gigamove.rwth-aachen.de
wahlomat.stud.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
messenger.ima.rwth-aachen.de
cloud.halifax.rwth-aachen.de
bas47.itc.rwth-aachen.de
web-std4.itc.rwth-aachen.de
fghw-community.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
alu.w2k.metallurgie.rwth-aachen.de
bolm.oc.rwth-aachen.de
bolm.oc.rwth-aachen.de
exam.kbsg.rwth-aachen.de
vpn.meditec.rwth-aachen.de
www.hitnet.rwth-aachen.de
fs22.hpc.itc.rwth-aachen.de
anyvpn.embedded.rwth-aachen.de
vpn2.noc.rwth-aachen.de
ifaic.ika.rwth-aachen.de
lbd.arch.rwth-aachen.de
switch-altbau-og1.isf.rwth-aachen.de
htg.ifht.rwth-aachen.de
igcs-chennai.org
files.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
formular-ts.zhv.rwth-aachen.de
wzl-lotus2.wzl.rwth-aachen.de
mail.rwth-aachen.de
ex10-casht01.zhv.rwth-aachen.de
helfer.halifax.rwth-aachen.de
www.water.rwth-aachen.de
fachschaften.rwth-aachen.de
test.sabio.itc.rwth-aachen.de
cucm-sub-22.pbx.rwth-aachen.de
mail.ind.rwth-aachen.de
www.ideal.rwth-aachen.de
vpn.lbz.rwth-aachen.de
www-i2.informatik.rwth-aachen.de
oauth.campus.rwth-aachen.de
vmhost-esxi-smq2-idrac.e3d.rwth-aachen.de
www.fskowi.rwth-aachen.de
www.lfb.rwth-aachen.de
d-mo05.devlef.campus.rwth-aachen.de
noc96.rz.rwth-aachen.de
autodiscover.ad.ibac.rwth-aachen.de
cloud10.dbis.rwth-aachen.de
my.ram.rwth-aachen.de
www.hitnet.rwth-aachen.de
vpn.e3d.rwth-aachen.de
nc19.itv.rwth-aachen.de
otrs.ias.rwth-aachen.de
institut2a.physik.rwth-aachen.de
mail-out-4.itc.rwth-aachen.de
quic.comsys.rwth-aachen.de
reifen-db.ika.rwth-aachen.de
vispa.physik.rwth-aachen.de
malta.informatik.rwth-aachen.de
ansible.automata.rwth-aachen.de
vpn.iwm.rwth-aachen.de
www.rwth-aachen.de
vpn.lbz.rwth-aachen.de
dev.iww.rwth-aachen.de
auger.physik.rwth-aachen.de
vreiff3.arch.rwth-aachen.de
belegi.halifax.rwth-aachen.de
www.embedded.rwth-aachen.de
www.compecon.rwth-aachen.de
calculus.itmc.rwth-aachen.de
for2591.ukaachen.de
vmhost-esxi-bf2-idrac.e3d.rwth-aachen.de
seko-rocket.itc.rwth-aachen.de
mail.rwth-aachen.de
transaction.medien.rwth-aachen.de
boreas.klinikum.rwth-aachen.de
vorreiter.iaw.rwth-aachen.de
backend.i11freunde.rwth-aachen.de
Certificate
The complete raw certificate details for www.shop.rwth-aachen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIzTCCBrWgAwIBAgIQUGjEAaDc4ojINkof6awi7TANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwNzA1MDAwMDAwWhcNMjQwNzA0MjM1 OTU5WjBuMQswCQYDVQQGEwJERTEcMBoGA1UECBMTTm9yZHJoZWluLVdlc3RmYWxl bjEfMB0GA1UEChMWUldUSCBBYWNoZW4gVW5pdmVyc2l0eTEgMB4GA1UEAxMXd3d3 LnNob3Aucnd0aC1hYWNoZW4uZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQCzS2u6rcN2QEvdVZCOIl0rlPjFA10BAoFb+JitQjRRC69+9kzVIQo/40XJ xpejOqyiWi33OCNQkyOjf0fw68Pzy3bK3rXbwKC9zfL1ISW5veCs9uq4YRLR8Xtg ZTMR0YLtoy4oA1KlwsfGguRyXnEfa73jtkmzUVNDiT2OPWrUDEchs9H/gi7zGqvW SBqrxJntMJ+WfZxDZqmUw1//pH3t1gBHrJNJwMyvxhnewhkyUGYZW0595/7AYdvu xkwqGePPbadnCmYh9GOVSwrzvrJBSI3e593Qj1pNKXZ2C31rDjZagKx4J2eZtJql 3oI39TbmcujyVmECSC+A29FSNeBh+F28i9gHogGTo0dxEZS/NdLRfnpfKn8b9+zA /bmZEuMoyhSDwEV//CA47x+wFCkiWGOqNXrz10sKAZG8hgrsXIGNuL/oVpWy9zsI DzrCKylzP7xpvnd8PZ0Vn0It96EEinuQ+82kWSMQ6PBITLeR6sCUJEt1eGzxep5s mZHJKojxC0OBct+CKkECg05e/JTwxW83+xNty0RuZDXERBkpIWdA0TLd3zhPK3A2 3EkTPQ+wREGojjF5FRO0eiYXIHKlGfzQgWHLEPQUpmj4Y8YG+FhULJH/QXTzhflx A2Np9erTDVY4HsaZYeS7SP6pYt8rr/93ufuY8cz5bf0pDPITmQIDAQABo4IDjzCC A4swHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFD9s dQqdP2AMhExKjR6FcIpnW/MZMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAA MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysG AQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BT MAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNl Y3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6Bggr BgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNB Q0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5j b20wggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AHb/iD8KtvuVUcJhzPWHujS0 pM27KdxoQgqf5mdMWjp0AAABiSXgYy0AAAQDAEgwRgIhAI0k3XFK3QU+gXwPLpMO nd84qJtRLhoqISrEMEORQ5VBAiEAkZgLnw70EKh05qmaquWYyLfQa3Bm90vtJavA ubNYQUwAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYkl4GOS AAAEAwBHMEUCICvAYz7ra3Ep7KJfctQ3tl+uzPkc98tuF/HopYXNGKViAiEAyDB9 ipi2YoUOt6ajoW3DJqtLFmlccMM7TmnZHdWV61gAdgDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAYkl4GNcAAAEAwBHMEUCIHJX37DQZx2F00n+I+g7 vepg4fTT5eLC6DhbbcI05CotAiEAwS6EYDYi75/IMjgliZcHVZWxPawQF6eiwx1/ e7Ja/3kwgYUGA1UdEQR+MHyCF3d3dy5zaG9wLnJ3dGgtYWFjaGVuLmRlghNyd3Ro LWFhY2hlbi1zaG9wLmRlggxyd3RoLXNob3AuZGWCE3Nob3Aucnd0aC1hYWNoZW4u ZGWCF3d3dy5yd3RoLWFhY2hlbi1zaG9wLmRlghB3d3cucnd0aC1zaG9wLmRlMA0G CSqGSIb3DQEBDAUAA4ICAQCNAvYMIFW5X0Di4mVNSfwBf3nvsdSNmpB2QggYuqWQ qoyLH83Ix9jZQLWllIFgxc6jCAMBATR2xna96CfBPPjo7ekAtqbXRBceJWhbrgHh MiuQEg14zrwmL6GYDIUxFzy+kdovtLcNVPXUhhl+2ZlexbzIay1dAd7rD3Bjca2D WdJJmTLMmED1mzgYlZ53Ahb2cUWPgTrqb6ho0pCAgmq8bUMuIz9EvK2oFd5oI2/O Kh6dl5PKQJTN9vBWsgEsWDxqRzW/2ep6UxMqdTqU1vuy7z1HliSKeOCnQ3UfbLJf OmP8P5oYYSb303IJcv8ml0NGxgyiG/AGdEGLcjt8YsQGqMJeihY8S1Itb/656gWG 7nFQfIFr5+UWD9afP14OUzL1PBOw0d/0ckx61knx1bfpQ5xv6iOekYZ6Ees8FWD1 GEs1BawAUCoozfoVoSggZlwbtowNQD7CXdlhabr+ZmIvR2saF5xDoWj4PWzdIMk4 T9n6TpH0bHyL7nGPtG2mU5MXYvmROwfJgxGCEUMd19Yqcmi2HeI7MB3bNb4Xel8B NAFIozq9wzhoMR0xdPhydFiHXEJtJLJyf3XKgHa1lSYUfvAgMJfdiVm2xql6kvVv 7UIRFSAFA9AcPQznH/D5WBBan4G6AGveTDpDpz8VIWIKuVct10YXqySfVnwAGsFD ow== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs0truq3DdkBL3VWQjiJd K5T4xQNdAQKBW/iYrUI0UQuvfvZM1SEKP+NFycaXozqsolot9zgjUJMjo39H8OvD 88t2yt6128Cgvc3y9SElub3grPbquGES0fF7YGUzEdGC7aMuKANSpcLHxoLkcl5x H2u947ZJs1FTQ4k9jj1q1AxHIbPR/4Iu8xqr1kgaq8SZ7TCfln2cQ2aplMNf/6R9 7dYAR6yTScDMr8YZ3sIZMlBmGVtOfef+wGHb7sZMKhnjz22nZwpmIfRjlUsK876y QUiN3ufd0I9aTSl2dgt9aw42WoCseCdnmbSapd6CN/U25nLo8lZhAkgvgNvRUjXg YfhdvIvYB6IBk6NHcRGUvzXS0X56Xyp/G/fswP25mRLjKMoUg8BFf/wgOO8fsBQp IlhjqjV689dLCgGRvIYK7FyBjbi/6FaVsvc7CA86wispcz+8ab53fD2dFZ9CLfeh BIp7kPvNpFkjEOjwSEy3kerAlCRLdXhs8XqebJmRySqI8QtDgXLfgipBAoNOXvyU 8MVvN/sTbctEbmQ1xEQZKSFnQNEy3d84TytwNtxJEz0PsERBqI4xeRUTtHomFyBy pRn80IFhyxD0FKZo+GPGBvhYVCyR/0F084X5cQNjafXq0w1WOB7GmWHku0j+qWLf K6//d7n7mPHM+W39KQzyE5kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 106882214017376005177078719631432884973 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RWTH Aachen University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.shop.rwth-aachen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 731458202588360778250557683283805613740545204103838455355129780987951140685248720444655988455100106371550475666634603896689351493870843400979636015240314677179262953510905325690072116934323701689347931000282551931608635454627055661150637460117502298012603648770442382499188636679993159555042163936863728904501254018914897086817942729887916353674259596340372006889390866458709029522509083596332994135653526746617753073668673686400404322279009063390478231315068251959463391972820952057581403771323052243929507006513652932910610770671464629895045683049543227439125248246406261532469185004813219812747457386328646988540429708797125653016031577674594707081059407166686494917073426210920531340844756066101266815006811538660663682839838354559770832191177946101466623053022677468846419576613212609533995450826978809200761200182961016663091555070980132734461157669295179102060196906466306571451891158273738079976856176786018752297851427843838989794132232098969533564080265569994356463703409434226602556990804186355489161076563713135848037624527432288244956672415155627670547081589806260359784891023909730369125385151137424790833809160771980493487427454099584944133330777463955362306499811087218275236105330552020527987786958983527224755491737 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f6c750a9d3f600c844c4a8d1e85708a675bf319 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shop.rwth-aachen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwth-aachen-shop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwth-shop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.rwth-aachen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rwth-aachen-shop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rwth-shop.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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