sciform.fkf.mpg.de
- Max-Planck-Gesellschaft -
Issued by MPG CA - G02
About this certificate
This digital certificate with serial number 26:3f:f4:f6:fb:0c:5e:9d:40:d9:69:0f was issued on by Max-Planck-Gesellschaft.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Max-Planck-Gesellschaft
Organization:
Max-Planck-Gesellschaft
State / Province:
Baden-Wuerttemberg
Locality: Stuttgart
Country: DE
Locality: Stuttgart
Country: DE
Max-Planck-Gesellschaft
Organization:
Max-Planck-Gesellschaft
State / Province:
Bayern
Locality: Muenchen
Country: DE
Locality: Muenchen
Country: DE
This certificate has expire since
Certificate Details
Serial Number (hex): 26:3f:f4:f6:fb:0c:5e:9d:40:d9:69:0fSerial Number (int): 11837749513257634408261314831
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 2d:f1:f8:32:7b:34:b8:84:a8:5f:fe:7f:8e:38:f1:9e:ea:3a:a1:88
AuthorityKeyId: c4:88:a5:07:ee:b8:7b:aa:0c:13:bf:da:29:74:63:52:1b:49:70:16
Fingerprint (sha1): 3a:58:06:93:73:c7:d7:73:75:f2:9d:48:ed:b5:c0:db:bf:77:82:ab
Fingerprint (sha256): 02:85:aa:ed:6a:c9:a7:b7:d7:46:be:e5:26:d1:5f:0b:e4:5a:8e:e6:b9:84:f8:33:45:c4:52:39:84:0b:38:ff
Issuing Certificate URL: http://cdp1.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl
Check the revocation status for certificate sciform.fkf.mpg.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sciform.fkf.mpg.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sciform.fkf.mpg.de
Other certificates including the domain name mpg.de
(limited to 100 certificates)
vweb14.gwdg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
stage.mpp.mpg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
stage.mpp.mpg.de
Certificate
The complete raw certificate details for sciform.fkf.mpg.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvzCCBaegAwIBAgIMJj/09vsMXp1A2WkPMA0GCSqGSIb3DQEBCwUAMGoxCzAJ BgNVBAYTAkRFMQ8wDQYDVQQIDAZCYXllcm4xETAPBgNVBAcMCE11ZW5jaGVuMSAw HgYDVQQKDBdNYXgtUGxhbmNrLUdlc2VsbHNjaGFmdDEVMBMGA1UEAwwMTVBHIENB IC0gRzAyMB4XDTIyMDMwMzA4MDgwN1oXDTIzMDQwMzA4MDgwN1owfTELMAkGA1UE BhMCREUxGzAZBgNVBAgMEkJhZGVuLVd1ZXJ0dGVtYmVyZzESMBAGA1UEBwwJU3R1 dHRnYXJ0MSAwHgYDVQQKDBdNYXgtUGxhbmNrLUdlc2VsbHNjaGFmdDEbMBkGA1UE AwwSc2NpZm9ybS5ma2YubXBnLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC CgKCAgEAuKCOKiGWAeSGTwd7ioSDGpyu62DxKkHeAMWAf+hr/Sr23klH9UqPrcq2 jLew3OQcmygDT4WeHpjwshRGb/b7IRb7xCwycbEw9HIvHNMynk0E3tF7TM/dDYct tqvN8nPy/Yt96Bx8G0a9HQ39+dGTE650n/q5WBUrINFUlaxbRLYL0jMPJMuePffM QFM7BzQquzm04WvwXRFe7Dm5tde9VOdWNYXwpqPm4YBUpu/pKh0WYW4VYJ7xi91u zYwRcsrkyDkPE1No+ZaS8Ldo2ehgwohhUzx8I8BwoNsVcu4E1oxYIciSI25EjLAv NGW2Mi2hWYOUFZkloNG75xVWWwKIc5J81KfvsaHIl+MvzXnzvc6Rv/JPGdoAbNbz td92EJVJv1l8VPAk5m02LHV8SoDbdA2bxH1Feyr2/cRqshyW/qMQmw7IPkU6nFkD mmOSFdGowUPhNUVbflZwokPSJDt+A2yVzOzNgEYNbEGYB04bPLyZt0I6dcWtQ6yR n4L05WO0qrfLMKLnvD4gtoxamWZiSfqs/0Cmc6YxOY64sykqH5jHfrraTf/w911c 3lHf/wRIiQPPjLfNuIZwpnaqBz5V5EElo6+CMNO21F+NnUopZdAB8LlVw+4y3i/K 9OjWXaSE6gV4LrVCtPITKrkq014wI7pPigYYyNuxKb8P1SAjow8CAwEAAaOCAlAw ggJMMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUF BwMBMB0GA1UdDgQWBBQt8fgyezS4hKhf/n+OOPGe6jqhiDAfBgNVHSMEGDAWgBTE iKUH7rh7qgwTv9opdGNSG0lwFjAdBgNVHREEFjAUghJzY2lmb3JtLmZrZi5tcGcu ZGUwfQYDVR0fBHYwdDA4oDagNIYyaHR0cDovL2NkcDEucGNhLmRmbi5kZS9tcGct ZzItY2EvcHViL2NybC9jYWNybC5jcmwwOKA2oDSGMmh0dHA6Ly9jZHAyLnBjYS5k Zm4uZGUvbXBnLWcyLWNhL3B1Yi9jcmwvY2FjcmwuY3JsMIHNBggrBgEFBQcBAQSB wDCBvTAzBggrBgEFBQcwAYYnaHR0cDovL29jc3AucGNhLmRmbi5kZS9PQ1NQLVNl cnZlci9PQ1NQMEIGCCsGAQUFBzAChjZodHRwOi8vY2RwMS5wY2EuZGZuLmRlL21w Zy1nMi1jYS9wdWIvY2FjZXJ0L2NhY2VydC5jcnQwQgYIKwYBBQUHMAKGNmh0dHA6 Ly9jZHAyLnBjYS5kZm4uZGUvbXBnLWcyLWNhL3B1Yi9jYWNlcnQvY2FjZXJ0LmNy dDATBgorBgEEAdZ5AgQDAQH/BAIFADBXBgNVHSAEUDBOMAgGBmeBDAECAjANBgsr BgEEAYGtIYIsHjAPBg0rBgEEAYGtIYIsAQEEMBAGDisGAQQBga0hgiwBAQQKMBAG DisGAQQBga0hgiwCAQQKMA0GCSqGSIb3DQEBCwUAA4IBAQAndNcMJLnw2UqbaxVs ZdBG6vN8TxswTPsWOSfmj2egWw6oUVsYptvnjhOuZf9iPZPZdciWHB65+iA3MZTu WtqwyU+QpFlYN/ICU080tk0zk+i9uU+/cqKiqoXrdgnCz5wsETFkjbykUc8ups6B hadwiiDyhcNzXonCTOfj1LQc/R47wjkBJrK/QKYE/JUNBKbTukCDPR0kkPsCQGJY HuhdvQaxpumWSDbrWE0qL9SnhUdOLUY2NMvycMtB55fUDQwB2NXHmge/suYcqjhi M6qGPuRktV44rpOcraTPedWd/Qhzx9sDw1+OwfQtM54IxDiEL4wyZyaV2y0DTrfn JsDE -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuKCOKiGWAeSGTwd7ioSD Gpyu62DxKkHeAMWAf+hr/Sr23klH9UqPrcq2jLew3OQcmygDT4WeHpjwshRGb/b7 IRb7xCwycbEw9HIvHNMynk0E3tF7TM/dDYcttqvN8nPy/Yt96Bx8G0a9HQ39+dGT E650n/q5WBUrINFUlaxbRLYL0jMPJMuePffMQFM7BzQquzm04WvwXRFe7Dm5tde9 VOdWNYXwpqPm4YBUpu/pKh0WYW4VYJ7xi91uzYwRcsrkyDkPE1No+ZaS8Ldo2ehg wohhUzx8I8BwoNsVcu4E1oxYIciSI25EjLAvNGW2Mi2hWYOUFZkloNG75xVWWwKI c5J81KfvsaHIl+MvzXnzvc6Rv/JPGdoAbNbztd92EJVJv1l8VPAk5m02LHV8SoDb dA2bxH1Feyr2/cRqshyW/qMQmw7IPkU6nFkDmmOSFdGowUPhNUVbflZwokPSJDt+ A2yVzOzNgEYNbEGYB04bPLyZt0I6dcWtQ6yRn4L05WO0qrfLMKLnvD4gtoxamWZi Sfqs/0Cmc6YxOY64sykqH5jHfrraTf/w911c3lHf/wRIiQPPjLfNuIZwpnaqBz5V 5EElo6+CMNO21F+NnUopZdAB8LlVw+4y3i/K9OjWXaSE6gV4LrVCtPITKrkq014w I7pPigYYyNuxKb8P1SAjow8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11837749513257634408261314831 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Muenchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'MPG CA - G02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-03 08:08:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-03 08:08:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baden-Wuerttemberg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Stuttgart' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'sciform.fkf.mpg.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 753213135863895334401612657878286369945121245965545976759179400007479307889044305043200913918592710067114884017809424504857737997522757257231157829813317835513867651246832981586964222958632140453344741793160776789530775400531198597468763736822868413574052917715429743578543511268477581084669959099609539449324643603712396684046008551615036444821604413275372004405537006394575187556359429303113383361299189959595407647615972986822957889232003156915067953414203731875327150586727247956327377273101406078140379566533992661343514091581424910714838848274870697107594508780270240171331061967054518534307607021493592042773685395388735359906418807252140581377350335419187827354252728648146745781668444126422056038860139501374373225986255009254248642624022116014706776696172847860747934979620939298713909043537381718480648101036374351182944109274352806343805620974735045112474515146706705884945754403908987698795154452440847789270553709872369368417595290167349614347685610320699216525399837654809213354994146062011677709876984993830407951648494217723520771773208878689220841909414054801437909412742033238935579154578720123701389509981669259131002905203353815437362491690593107768849780157019903335320858078783956098514132853274854295418938127 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2df1f8327b34b884a85ffe7f8e38f19eea3aa188 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c488a507eeb87baa0c13bfda297463521b497016 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sciform.fkf.mpg.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.10 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.10 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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