vpn2.noc.rwth-aachen.de
- RWTH Aachen -
Issued by RWTH Aachen CA
About this certificate
This digital certificate with serial number 1a:28:bc:db:ad:e5:9a was issued on by RWTH Aachen.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [KeyEncipherment ContentCommitment DigitalSignature] (00000111) inconsistent with ExtKeyUsage serverAuth The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
RWTH Aachen
Organization:
RWTH Aachen
Organization unit: IT Center
Organization unit: IT Center
State / Province:
Nordrhein-Westfalen
Locality: Aachen
Country: DE
Locality: Aachen
Country: DE
RWTH Aachen
Organization:
RWTH Aachen
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 1a:28:bc:db:ad:e5:9aSerial Number (int): 7363140999046554
Serial Number lenght: 53 bits, 7 octets
SubjectKeyId: 13:e3:b2:7f:37:2a:12:3a:7a:c0:5a:21:b8:61:77:98:3b:ed:54:37
AuthorityKeyId: 6e:d5:3e:c0:1c:2f:71:c9:3c:bf:49:4e:ef:6a:55:48:ec:d1:f2:38
Fingerprint (sha1): cd:fe:5f:a7:1a:fc:3a:c2:be:fd:d0:f9:75:e3:ef:4b:af:85:d4:92
Fingerprint (sha256): 01:1e:08:e0:56:d3:4f:20:14:00:58:13:0e:d3:b0:8e:c8:27:22:e3:ea:51:35:33:8b:1a:c6:d2:51:12:65:5a
Issuing Certificate URL: http://cdp1.pca.dfn.de/rwth-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/rwth-ca/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/rwth-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/rwth-ca/pub/crl/cacrl.crl
Check the revocation status for certificate vpn2.noc.rwth-aachen.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn2.noc.rwth-aachen.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn2.noc.rwth-aachen.de
Other certificates including the domain name rwth-aachen.de
(limited to 100 certificates)
frp.landeco.rwth-aachen.de
vpn.imr.rwth-aachen.de
red.isea.rwth-aachen.de
git.isea.rwth-aachen.de
raum.arch.rwth-aachen.de
asterix.isf.rwth-aachen.de
ds10.isf.rwth-aachen.de
studibv.cms.rwth-aachen.de
zk-itc.key.rwth-aachen.de
sapportal.zhv.rwth-aachen.de
mail.dorf.rwth-aachen.de
www.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
itv.rwth-aachen.de
studiolo.arch.rwth-aachen.de
kaffeekasse.embedded.rwth-aachen.de
mark.tvk.rwth-aachen.de
sbc-2-extdfn.pbx.rwth-aachen.de
metafa.fsmpi.rwth-aachen.de
www.shop.rwth-aachen.de
www.rwth-aachen.de
bl.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
admin-test.streaming.rwth-aachen.de
gigamove.rwth-aachen.de
wahlomat.stud.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
messenger.ima.rwth-aachen.de
cloud.halifax.rwth-aachen.de
bas47.itc.rwth-aachen.de
web-std4.itc.rwth-aachen.de
fghw-community.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
alu.w2k.metallurgie.rwth-aachen.de
bolm.oc.rwth-aachen.de
bolm.oc.rwth-aachen.de
exam.kbsg.rwth-aachen.de
vpn.meditec.rwth-aachen.de
www.hitnet.rwth-aachen.de
fs22.hpc.itc.rwth-aachen.de
anyvpn.embedded.rwth-aachen.de
vpn2.noc.rwth-aachen.de
ifaic.ika.rwth-aachen.de
lbd.arch.rwth-aachen.de
switch-altbau-og1.isf.rwth-aachen.de
htg.ifht.rwth-aachen.de
igcs-chennai.org
files.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
formular-ts.zhv.rwth-aachen.de
wzl-lotus2.wzl.rwth-aachen.de
mail.rwth-aachen.de
ex10-casht01.zhv.rwth-aachen.de
helfer.halifax.rwth-aachen.de
www.water.rwth-aachen.de
fachschaften.rwth-aachen.de
test.sabio.itc.rwth-aachen.de
cucm-sub-22.pbx.rwth-aachen.de
mail.ind.rwth-aachen.de
www.ideal.rwth-aachen.de
vpn.lbz.rwth-aachen.de
www-i2.informatik.rwth-aachen.de
oauth.campus.rwth-aachen.de
vmhost-esxi-smq2-idrac.e3d.rwth-aachen.de
www.fskowi.rwth-aachen.de
www.lfb.rwth-aachen.de
d-mo05.devlef.campus.rwth-aachen.de
noc96.rz.rwth-aachen.de
autodiscover.ad.ibac.rwth-aachen.de
cloud10.dbis.rwth-aachen.de
my.ram.rwth-aachen.de
www.hitnet.rwth-aachen.de
vpn.e3d.rwth-aachen.de
nc19.itv.rwth-aachen.de
otrs.ias.rwth-aachen.de
institut2a.physik.rwth-aachen.de
mail-out-4.itc.rwth-aachen.de
quic.comsys.rwth-aachen.de
reifen-db.ika.rwth-aachen.de
vispa.physik.rwth-aachen.de
malta.informatik.rwth-aachen.de
ansible.automata.rwth-aachen.de
vpn.iwm.rwth-aachen.de
www.rwth-aachen.de
vpn.lbz.rwth-aachen.de
dev.iww.rwth-aachen.de
auger.physik.rwth-aachen.de
vreiff3.arch.rwth-aachen.de
belegi.halifax.rwth-aachen.de
www.embedded.rwth-aachen.de
www.compecon.rwth-aachen.de
calculus.itmc.rwth-aachen.de
for2591.ukaachen.de
vmhost-esxi-bf2-idrac.e3d.rwth-aachen.de
seko-rocket.itc.rwth-aachen.de
mail.rwth-aachen.de
transaction.medien.rwth-aachen.de
boreas.klinikum.rwth-aachen.de
vorreiter.iaw.rwth-aachen.de
backend.i11freunde.rwth-aachen.de
vpn.imr.rwth-aachen.de
red.isea.rwth-aachen.de
git.isea.rwth-aachen.de
raum.arch.rwth-aachen.de
asterix.isf.rwth-aachen.de
ds10.isf.rwth-aachen.de
studibv.cms.rwth-aachen.de
zk-itc.key.rwth-aachen.de
sapportal.zhv.rwth-aachen.de
mail.dorf.rwth-aachen.de
www.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
itv.rwth-aachen.de
studiolo.arch.rwth-aachen.de
kaffeekasse.embedded.rwth-aachen.de
mark.tvk.rwth-aachen.de
sbc-2-extdfn.pbx.rwth-aachen.de
metafa.fsmpi.rwth-aachen.de
www.shop.rwth-aachen.de
www.rwth-aachen.de
bl.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
admin-test.streaming.rwth-aachen.de
gigamove.rwth-aachen.de
wahlomat.stud.rwth-aachen.de
msg-medizin.klinikum.rwth-aachen.de
messenger.ima.rwth-aachen.de
cloud.halifax.rwth-aachen.de
bas47.itc.rwth-aachen.de
web-std4.itc.rwth-aachen.de
fghw-community.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
alu.w2k.metallurgie.rwth-aachen.de
bolm.oc.rwth-aachen.de
bolm.oc.rwth-aachen.de
exam.kbsg.rwth-aachen.de
vpn.meditec.rwth-aachen.de
www.hitnet.rwth-aachen.de
fs22.hpc.itc.rwth-aachen.de
anyvpn.embedded.rwth-aachen.de
vpn2.noc.rwth-aachen.de
ifaic.ika.rwth-aachen.de
lbd.arch.rwth-aachen.de
switch-altbau-og1.isf.rwth-aachen.de
htg.ifht.rwth-aachen.de
igcs-chennai.org
files.lfi.rwth-aachen.de
www.hitnet.rwth-aachen.de
formular-ts.zhv.rwth-aachen.de
wzl-lotus2.wzl.rwth-aachen.de
mail.rwth-aachen.de
ex10-casht01.zhv.rwth-aachen.de
helfer.halifax.rwth-aachen.de
www.water.rwth-aachen.de
fachschaften.rwth-aachen.de
test.sabio.itc.rwth-aachen.de
cucm-sub-22.pbx.rwth-aachen.de
mail.ind.rwth-aachen.de
www.ideal.rwth-aachen.de
vpn.lbz.rwth-aachen.de
www-i2.informatik.rwth-aachen.de
oauth.campus.rwth-aachen.de
vmhost-esxi-smq2-idrac.e3d.rwth-aachen.de
www.fskowi.rwth-aachen.de
www.lfb.rwth-aachen.de
d-mo05.devlef.campus.rwth-aachen.de
noc96.rz.rwth-aachen.de
autodiscover.ad.ibac.rwth-aachen.de
cloud10.dbis.rwth-aachen.de
my.ram.rwth-aachen.de
www.hitnet.rwth-aachen.de
vpn.e3d.rwth-aachen.de
nc19.itv.rwth-aachen.de
otrs.ias.rwth-aachen.de
institut2a.physik.rwth-aachen.de
mail-out-4.itc.rwth-aachen.de
quic.comsys.rwth-aachen.de
reifen-db.ika.rwth-aachen.de
vispa.physik.rwth-aachen.de
malta.informatik.rwth-aachen.de
ansible.automata.rwth-aachen.de
vpn.iwm.rwth-aachen.de
www.rwth-aachen.de
vpn.lbz.rwth-aachen.de
dev.iww.rwth-aachen.de
auger.physik.rwth-aachen.de
vreiff3.arch.rwth-aachen.de
belegi.halifax.rwth-aachen.de
www.embedded.rwth-aachen.de
www.compecon.rwth-aachen.de
calculus.itmc.rwth-aachen.de
for2591.ukaachen.de
vmhost-esxi-bf2-idrac.e3d.rwth-aachen.de
seko-rocket.itc.rwth-aachen.de
mail.rwth-aachen.de
transaction.medien.rwth-aachen.de
boreas.klinikum.rwth-aachen.de
vorreiter.iaw.rwth-aachen.de
backend.i11freunde.rwth-aachen.de
Certificate
The complete raw certificate details for vpn2.noc.rwth-aachen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgIHGii8263lmjANBgkqhkiG9w0BAQsFADBeMQswCQYDVQQG EwJERTEUMBIGA1UEChMLUldUSCBBYWNoZW4xFzAVBgNVBAMTDlJXVEggQWFjaGVu IENBMSAwHgYJKoZIhvcNAQkBFhFjYUByd3RoLWFhY2hlbi5kZTAeFw0xNTA5Mjgx MzIzMjNaFw0xODEyMjUxMzIzMjNaMIGIMQswCQYDVQQGEwJERTEcMBoGA1UECAwT Tm9yZHJoZWluLVdlc3RmYWxlbjEPMA0GA1UEBwwGQWFjaGVuMRQwEgYDVQQKDAtS V1RIIEFhY2hlbjESMBAGA1UECwwJSVQgQ2VudGVyMSAwHgYDVQQDDBd2cG4yLm5v Yy5yd3RoLWFhY2hlbi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AK58jIjP5qwr22ob9VrmtdYivVOAG5Mo9HAeuDHuJhSaqYIlOdFOtvEt8k7Cf1Tn OTG2rqGrSOORr79V+QNfW5aveMY8C3g+crMXg9uvQ2ZgYrDGvZpsIHobzD3bwiMD aE3tqfPwwr2K2nswivaZX2GMW+Ei9yT8SQ9WPc7lv+MIpHJzbNJy87ufdP6ljtxG HZvEsGtnGbJ4Fu2EKVnKNAN4Xw2oCla+gTZULnMzfBRueJs1+CoJa8HUt58ndGu4 kQQ/cTcB9BjTyX3hmeS7KqvwaECwrhAJfGdgkxcY0BMGKFOrje7J5NCseHIICZl8 yUo89BNbi0Om9g9owa2C4zsCAwEAAaOCAi0wggIpME8GA1UdIARIMEYwEQYPKwYB BAGBrSGCLAEBBAMDMBEGDysGAQQBga0hgiwCAQQDATAPBg0rBgEEAYGtIYIsAQEE MA0GCysGAQQBga0hgiweMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAkGA1UdEwQCMAAw CwYDVR0PBAQDAgXgMB0GA1UdDgQWBBQT47J/NyoSOnrAWiG4YXeYO+1UNzAfBgNV HSMEGDAWgBRu1T7AHC9xyTy/SU7valVI7NHyODAiBgNVHREEGzAZghd2cG4yLm5v Yy5yd3RoLWFhY2hlbi5kZTB5BgNVHR8EcjBwMDagNKAyhjBodHRwOi8vY2RwMS5w Y2EuZGZuLmRlL3J3dGgtY2EvcHViL2NybC9jYWNybC5jcmwwNqA0oDKGMGh0dHA6 Ly9jZHAyLnBjYS5kZm4uZGUvcnd0aC1jYS9wdWIvY3JsL2NhY3JsLmNybDCByQYI KwYBBQUHAQEEgbwwgbkwMwYIKwYBBQUHMAGGJ2h0dHA6Ly9vY3NwLnBjYS5kZm4u ZGUvT0NTUC1TZXJ2ZXIvT0NTUDBABggrBgEFBQcwAoY0aHR0cDovL2NkcDEucGNh LmRmbi5kZS9yd3RoLWNhL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDBABggrBgEFBQcw AoY0aHR0cDovL2NkcDIucGNhLmRmbi5kZS9yd3RoLWNhL3B1Yi9jYWNlcnQvY2Fj ZXJ0LmNydDANBgkqhkiG9w0BAQsFAAOCAQEApLuBDFqFf3xTLEVPQJwpxNomePus V3HfeoDw8iEbVO+KeMS42S5X2wdzf7mnepFmggtIa9ZTAL7Y4mEjg3eY/h3LyTX7 +roETqtj1URX2LTKdr13MPDHT/P+ivgj3Yjbg25rt7I0+QcWX0e3jI2dvWamrPXB 9G3ezRAWU3EqaVmvojb5a3oEfR4yRok2bnUJRZ9FfPq0doJcATNDTO5v/rFxl74X AyxNutsQgclyhkK5y849pb7sbsmQEmJln6JwN4UJciPVIWlZu4etv3DIqKsGyJXb abuvAMNNKFfDdpJtWXq1up4+pXNVVjnXoXqCjJjbd5J24SFUdmQvH/nowA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnyMiM/mrCvbahv1Wua1 1iK9U4Abkyj0cB64Me4mFJqpgiU50U628S3yTsJ/VOc5MbauoatI45Gvv1X5A19b lq94xjwLeD5ysxeD269DZmBisMa9mmwgehvMPdvCIwNoTe2p8/DCvYraezCK9plf YYxb4SL3JPxJD1Y9zuW/4wikcnNs0nLzu590/qWO3EYdm8Swa2cZsngW7YQpWco0 A3hfDagKVr6BNlQuczN8FG54mzX4KglrwdS3nyd0a7iRBD9xNwH0GNPJfeGZ5Lsq q/BoQLCuEAl8Z2CTFxjQEwYoU6uN7snk0Kx4cggJmXzJSjz0E1uLQ6b2D2jBrYLj OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7363140999046554 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RWTH Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RWTH Aachen CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-28 13:23:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-25 13:23:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'RWTH Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Center' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'vpn2.noc.rwth-aachen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22026882446603133310694928298705772817047868039586867345938532773228860856832845122253381926041247943220345755664379740784876902655411238198352752360182175748002331696859697005148397765761447254730735180909233708059596086426399738099495608111596925786957411506177531531300857613452587843600037788530219008859628273296745132790680772275685572305075245736894963201365665901417365952711626335595230883823720142051323650454898024848801891740680176921577046009925251456985578847869612024295228820621054051142871072309979718954435944918980618186923180272459806469885572443767776589654284793388688129524411755443788938666811 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05e0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 13e3b27f372a123a7ac05a21b86177983bed5437 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6ed53ec01c2f71c93cbf494eef6a5548ecd1f238 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn2.noc.rwth-aachen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/rwth-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/rwth-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (188 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/rwth-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/rwth-ca/pub/cacert/cacert.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a4bb810c5a857f7c532c454f409c29c4da2678fbac5771df7a80f0f2211b54ef8a78c4b8d92e57db07737fb9a77a9166820b486bd65300bed8e26123837798fe1dcbc935fbfaba044eab63d54457d8b4ca76bd7730f0c74ff3fe8af823dd88db836e6bb7b234f907165f47b78c8d9dbd66a6acf5c1f46ddecd101653712a6959afa236f96b7a047d1e324689366e7509459f457cfab476825c0133434cee6ffeb17197be17032c4dbadb1081c9728642b9cbce3da5beec6ec9901262659fa2703785097223d5216959bb87adbf70c8a8ab06c895db69bbaf00c34d2857c376926d597ab5ba9e3ea573555639d7a17a828c98db779276e1215476642f1ff9e8c0