nextcloud.mpi-klsb.mpg.de
- Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V. -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 7c:d7:b3:c1:47:2f:e2:07:12:2c:05:0b:6e:fe:b3:a8 was issued on by Sectigo Limited.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.
Organization:
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.
State / Province:
Bayern
Country: DE
Country: DE
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 7c:d7:b3:c1:47:2f:e2:07:12:2c:05:0b:6e:fe:b3:a8Serial Number (int): 165944261166300297678328325942286398376
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 4e:71:5c:2b:e6:1e:ec:02:8f:37:88:b5:b8:83:7c:cd:5b:60:18:33
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 43:74:74:0b:31:f6:ee:46:4c:1e:86:76:47:49:cb:ba:7e:d3:6e:98
Fingerprint (sha256): 01:4c:36:79:2f:94:1f:37:c2:a4:22:9f:cd:7f:d8:44:fc:3e:11:74:d2:13:9f:6d:78:31:74:93:1e:70:27:b5
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate nextcloud.mpi-klsb.mpg.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nextcloud.mpi-klsb.mpg.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nextcloud.mpi-klsb.mpg.de
nc-http-p.mpi-inf.mpg.de
nextcloud.mpi-inf.mpg.de
nc-http-p.mpi-inf.mpg.de
nextcloud.mpi-inf.mpg.de
Other certificates including the domain name mpg.de
(limited to 100 certificates)
vweb14.gwdg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
nextcloud.mpi-klsb.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
nextcloud.mpi-klsb.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
Certificate
The complete raw certificate details for nextcloud.mpi-klsb.mpg.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIQTCCBymgAwIBAgIQfNezwUcv4gcSLAULbv6zqDANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTI0MDIxMzAwMDAwMFoXDTI1MDIxMjIzNTk1OVowgYsxCzAJBgNV BAYTAkRFMQ8wDQYDVQQIEwZCYXllcm4xRzBFBgNVBAoMPk1heC1QbGFuY2stR2Vz ZWxsc2NoYWZ0IHp1ciBGw7ZyZGVydW5nIGRlciBXaXNzZW5zY2hhZnRlbiBlLlYu MSIwIAYDVQQDExluZXh0Y2xvdWQubXBpLWtsc2IubXBnLmRlMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAppnXSWubKwyyvdQ2gj06YjtZwo1NIy32tjH8 ZYW9GiQ/iIuh6Wg5zF7xnE7b3aenCkne9bw5ZCdA16xTJ3izOVF5AAkm/zgoOZE0 T1ls1ZKhIyOui6yNVtCpRu7SH9rxVRtRuSoPXlqvJWQAJIFlZCZtskEu9E1A9LLy TK0w+P8r9bihWHzgNr/Dp4dq84Ffh/vLVnjY2fonsIa2IoxEE/3KYgrZ6j64rm1b nGIwNaYxUB3uJmhtnJdtZrMC/VpSd2AMmiVS3mT52h5ePN0IFjsnvBuoBAg78EIz 40vxH/nm37Zf96YayEWf7X9laIXDKmX2ZoQtHtX+5Mjm2JIhVXp5/aEo4DMx26th KbheUFWIyd3x1wHJYwyNqQVsG/q2KlEc7XZ0CDh9raYDrBgZtWsN9kJaPKuEr2tw mnSOTZIxg0mRe/+bDPFVK9/wklpiKM0Bq7yCvODBVlLNjgYvSRphzOak4xlIKHuf y5aG3t/r0JJ++pycoy2u6ANp1LherQ47vq5XXeQqdtaHVf038LGL7SMPYTxFkroS c88xghPVlLHSHpUVDcI2g+BRZS7PnXDvXl3luLcKxXdsJBSAn0w7eO/oyQtWp642 5CFwt/HwI4XHgkX1CBK0UntiSJXq2GWB5qBkGITJQ6hUpn1tNPoS5LB8T3lm+p/m SOBVCb0CAwEAAaOCA5MwggOPMB8GA1UdIwQYMBaAFBfZ1iUnZ/kxwklD2TA2RIxs qU/rMB0GA1UdDgQWBBROcVwr5h7sAo83iLW4g3zNW2AYMzAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw SgYDVR0gBEMwQTA1BgwrBgEEAbIxAQIBAwQwJTAjBggrBgEFBQcCARYXaHR0cHM6 Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQICMFoGA1UdHwRTMFEwT6BNoEuGSWh0 dHA6Ly9jcmwuc2VjdGlnby5jb20vU2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlk YXRpb25TZWN1cmVTZXJ2ZXJDQS5jcmwwgYoGCCsGAQUFBwEBBH4wfDBVBggrBgEF BQcwAoZJaHR0cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0 aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0 cDovL29jc3Auc2VjdGlnby5jb20wggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2 AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjaGqP1oAAAQDAEcw RQIhAPCekH7o20sRhV0HwpI43TjdSUQkuEeq3MGElIcA+YGpAiA4/9MSsSLsRo1q yYuOaahTqg4S2vcGnELiTk/0g4XyogB3AKLjCuRF772tm3447Udnd1PXgluElNcr XhssxLlQpEfnAAABjaGqQL8AAAQDAEgwRgIhAMWvd6I1E4lLnF8DdivwA6QyJWrz cGzbvHjmdRqD0De4AiEAgKpnATawJJDPLWBzOAZcwrE1eweXz4sY1/4mIi7rFKAA dgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY2hqj+JAAAEAwBH MEUCIQCXM0lwBTz6P6RKOOWQUbqpF3xjOQinWIBhhIPuOhMqkQIgd6HKEWDtsbzr npuLwctTfRfJEiX1yJSk13zFWG9AAz4wWAYDVR0RBFEwT4IZbmV4dGNsb3VkLm1w aS1rbHNiLm1wZy5kZYIYbmMtaHR0cC1wLm1waS1pbmYubXBnLmRlghhuZXh0Y2xv dWQubXBpLWluZi5tcGcuZGUwDQYJKoZIhvcNAQELBQADggEBAFIj/fb2kiUqZKFf ktGmosyYhaRCqscmloXU9AUDDVX/lH0PzD0ai42g+GavfD3WPH7owpJAtPF5DyxR 2pOkY1eoLyxKgy8np2y2HgSv3OXsC//cqHde8kC9AdhAkcZ4lXQPGRbElT24k7rR zFFEA6g3EcymoYh3gQtOjlFSQqNRabP3KKsQOnRGdXug6Pzqez0V9GxfJx1sLiGU KmZR/+mLbrOb/sOBI7iBGGSllOPntWPyDZrjEH22IqFh/ul2jUqtxaS/wBUwjTwL N4wKLt36bRMF4A5F/bpflvZ65oVuPtoOLnc6vvdb64pIMcNpBvBrbcZyXqD9BMeU GtNpQsg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAppnXSWubKwyyvdQ2gj06 YjtZwo1NIy32tjH8ZYW9GiQ/iIuh6Wg5zF7xnE7b3aenCkne9bw5ZCdA16xTJ3iz OVF5AAkm/zgoOZE0T1ls1ZKhIyOui6yNVtCpRu7SH9rxVRtRuSoPXlqvJWQAJIFl ZCZtskEu9E1A9LLyTK0w+P8r9bihWHzgNr/Dp4dq84Ffh/vLVnjY2fonsIa2IoxE E/3KYgrZ6j64rm1bnGIwNaYxUB3uJmhtnJdtZrMC/VpSd2AMmiVS3mT52h5ePN0I FjsnvBuoBAg78EIz40vxH/nm37Zf96YayEWf7X9laIXDKmX2ZoQtHtX+5Mjm2JIh VXp5/aEo4DMx26thKbheUFWIyd3x1wHJYwyNqQVsG/q2KlEc7XZ0CDh9raYDrBgZ tWsN9kJaPKuEr2twmnSOTZIxg0mRe/+bDPFVK9/wklpiKM0Bq7yCvODBVlLNjgYv SRphzOak4xlIKHufy5aG3t/r0JJ++pycoy2u6ANp1LherQ47vq5XXeQqdtaHVf03 8LGL7SMPYTxFkroSc88xghPVlLHSHpUVDcI2g+BRZS7PnXDvXl3luLcKxXdsJBSA n0w7eO/oyQtWp6425CFwt/HwI4XHgkX1CBK0UntiSJXq2GWB5qBkGITJQ6hUpn1t NPoS5LB8T3lm+p/mSOBVCb0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 165944261166300297678328325942286398376 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nextcloud.mpi-klsb.mpg.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 679672541761759899342492817249075729942309907857753382299053196605113407374911899408299211716182607009227032649055827061733721487378298991008598352887625433758397663351641079156209276959892542382204038541838433003378055023594574457586469450802553218176472253590416725187225267622227696959219577016072070641569872094680540155680674953271137413845844112410069583057567748547122053505062837808709528166216626958142226143402313467144346465920726745085210629123925768633398645749311801321844206930383520841081350610597491639346497767837250670708926799875260839742780465684165582856696220670774063446146049155715823947997449768351960384154743364644902821594341669593309711287527031632897847492666980276819323697676981388747056643431287914707539505758576836217475498570633628999231626136503163289244135424078829427420363481875040460043643098096182830104239428012129156420336380655323567019714408280851871494866165590744014499583501566919399483136502317371342960778383943113271512976602293213044482362452156526649832423600057037901190899174682948277382652071005879617164792969901330445489116706283752788885899049933391937207784296684121930669673349834168302408957952431041068972523862085072076306942117456838548730800521677497260779876190653 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e715c2be61eec028f3788b5b8837ccd5b601833 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (81 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nextcloud.mpi-klsb.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nc-http-p.mpi-inf.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nextcloud.mpi-inf.mpg.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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