dom-prd1.ic.uva.nl
- Universiteit van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 13:e8:1d:df:a2:28:40:c1:89:de:34:65:e3:d2:ba:d5 was issued on by GEANT Vereniging.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit van Amsterdam
Organization:
Universiteit van Amsterdam
Organization unit: ICT Services
Organization unit: ICT Services
State / Province:
Noord-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 13:e8:1d:df:a2:28:40:c1:89:de:34:65:e3:d2:ba:d5Serial Number (int): 26460550699037462599834418748178217685
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 9e:ea:01:f4:e4:6c:c1:36:1d:89:47:04:0c:c9:9e:5b:37:54:8d:00
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 5f:6e:45:af:29:bb:5e:6f:7f:25:9c:70:88:89:aa:82:6a:9c:bb:e4
Fingerprint (sha256): 03:d6:21:e1:c6:20:b2:ca:13:2a:a3:9d:11:9a:df:48:2c:35:50:71:1f:56:7d:7f:d7:76:63:0a:3b:ee:c4:59
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate dom-prd1.ic.uva.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dom-prd1.ic.uva.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dom-prd1.ic.uva.nl
Other certificates including the domain name uva.nl
(limited to 100 certificates)
elrond.ic.uva.nl
spin.spinnet.eu
parijs-deeltijd2016.humanities.uva.nl
sap-dev-rudx.ic.uva.nl
fullfabric.com
mobiusportal.uva.dev.icts.education
medewerker.uva.nl
schoolmuseum.uba.uva.nl
filmstudies.nl
amsterdam1544.humanities.uva.nl
www.fon.hum.uva.nl
studiegids.beheer.uva.nl
agile099.science.uva.nl
smdmmstreamprd.ic.uva.nl
idm-beheer.ic.uva.nl
academy.socsci.uva.nl
humanities.uva.nl
blendedlearning.socsci.uva.nl
sap-acc-ruax.ic.uva.nl
transparency.humanities.uva.nl
dutchcycling.socsci.uva.nl
educsys.uva.nl
slpl.science.uva.nl
ahmpostcolonialmemory.humanities.uva.nl
publichistory.humanities.uva.nl
zaken.test.uva.nl
roosterportal-tst.uva.nl
humanities.uva.nl
onderzoekmobw.socsci.uva.nl
cas-acc.ic.uva.nl
content-dev.sap.uva.nl
analytics.ic.uva.nl
agile042.science.uva.nl
smdmmstreamprd.ic.uva.nl
antondekom.humanities.uva.nl
digitaal.uba.uva.nl
mijn.usc.uva.nl
id-dev.ic.uva.nl
cas5-acc.lb.uva.nl
www.fnwi.uva.nl
nra-tst.sis.uva.nl
peoplexs.humanities.uva.nl
www.startmedewerker.uva.nl
docentenkamer.humanities.uva.nl
seop.illc.uva.nl
dom-prd1.ic.uva.nl
gbs-prd-kb2.gbs.uva.nl
antondekom.humanities.uva.nl
cleverdon.hum.uva.nl
acc.sis.uva.nl
feeding-the-city.create.humanities.uva.nl
learninglab.uva.nl
secure-apis.hva.nl
spin.spinnet.eu
webformulieren.uva.nl
smdmm3sb-prd.lb.uva.nl
corpnet.uva.nl
usc.uva.nl
readers.uva.nl
blackboard.uva.nl
gartnerportal.uva.prd.icts.education
agile117.science.uva.nl
paying-dev.uva.nl
agile152.science.uva.nl
www.gbs-prd-kb2.gbs.uva.nl
evasys.uva.nl
dpc.uba.uva.nl
100yearsofenglish.humanities.uva.nl
tlc.uva.nl
sils-fairspace.science.uva.nl
comtesttool.humanities.uva.nl
secure.uva.nl
smdmmstreamprd.ic.uva.nl
maven.ic.uva.nl
filmstudies.nl
cities.humanities.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
agile235.science.uva.nl
axiom.humanities.uva.nl
studiegids.beheer.uva.nl
gitlab.ic.uva.nl
datanose.science.uva.nl
ldapad.uva.nl
educsys.uva.nl
vanmensending.humanities.uva.nl
agile123.science.uva.nl
appstore.uva.nl
reader.humanities.uva.nl
archives.uba.uva.nl
ex2016-prd-hva.lb.uva.nl
cf.humanities.uva.nl
cms-prd-www.lb.uva.nl
api.paying.uva.nl
*.proxy.uba.uva.nl
medina.ic.uva.nl
publicintervention.humanities.uva.nl
www.usc.uva.nl
parola.humanities.uva.nl
agile201.science.uva.nl
spin.spinnet.eu
parijs-deeltijd2016.humanities.uva.nl
sap-dev-rudx.ic.uva.nl
fullfabric.com
mobiusportal.uva.dev.icts.education
medewerker.uva.nl
schoolmuseum.uba.uva.nl
filmstudies.nl
amsterdam1544.humanities.uva.nl
www.fon.hum.uva.nl
studiegids.beheer.uva.nl
agile099.science.uva.nl
smdmmstreamprd.ic.uva.nl
idm-beheer.ic.uva.nl
academy.socsci.uva.nl
humanities.uva.nl
blendedlearning.socsci.uva.nl
sap-acc-ruax.ic.uva.nl
transparency.humanities.uva.nl
dutchcycling.socsci.uva.nl
educsys.uva.nl
slpl.science.uva.nl
ahmpostcolonialmemory.humanities.uva.nl
publichistory.humanities.uva.nl
zaken.test.uva.nl
roosterportal-tst.uva.nl
humanities.uva.nl
onderzoekmobw.socsci.uva.nl
cas-acc.ic.uva.nl
content-dev.sap.uva.nl
analytics.ic.uva.nl
agile042.science.uva.nl
smdmmstreamprd.ic.uva.nl
antondekom.humanities.uva.nl
digitaal.uba.uva.nl
mijn.usc.uva.nl
id-dev.ic.uva.nl
cas5-acc.lb.uva.nl
www.fnwi.uva.nl
nra-tst.sis.uva.nl
peoplexs.humanities.uva.nl
www.startmedewerker.uva.nl
docentenkamer.humanities.uva.nl
seop.illc.uva.nl
dom-prd1.ic.uva.nl
gbs-prd-kb2.gbs.uva.nl
antondekom.humanities.uva.nl
cleverdon.hum.uva.nl
acc.sis.uva.nl
feeding-the-city.create.humanities.uva.nl
learninglab.uva.nl
secure-apis.hva.nl
spin.spinnet.eu
webformulieren.uva.nl
smdmm3sb-prd.lb.uva.nl
corpnet.uva.nl
usc.uva.nl
readers.uva.nl
blackboard.uva.nl
gartnerportal.uva.prd.icts.education
agile117.science.uva.nl
paying-dev.uva.nl
agile152.science.uva.nl
www.gbs-prd-kb2.gbs.uva.nl
evasys.uva.nl
dpc.uba.uva.nl
100yearsofenglish.humanities.uva.nl
tlc.uva.nl
sils-fairspace.science.uva.nl
comtesttool.humanities.uva.nl
secure.uva.nl
smdmmstreamprd.ic.uva.nl
maven.ic.uva.nl
filmstudies.nl
cities.humanities.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
agile235.science.uva.nl
axiom.humanities.uva.nl
studiegids.beheer.uva.nl
gitlab.ic.uva.nl
datanose.science.uva.nl
ldapad.uva.nl
educsys.uva.nl
vanmensending.humanities.uva.nl
agile123.science.uva.nl
appstore.uva.nl
reader.humanities.uva.nl
archives.uba.uva.nl
ex2016-prd-hva.lb.uva.nl
cf.humanities.uva.nl
cms-prd-www.lb.uva.nl
api.paying.uva.nl
*.proxy.uba.uva.nl
medina.ic.uva.nl
publicintervention.humanities.uva.nl
www.usc.uva.nl
parola.humanities.uva.nl
agile201.science.uva.nl
Certificate
The complete raw certificate details for dom-prd1.ic.uva.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHBjCCBO6gAwIBAgIQE+gd36IoQMGJ3jRl49K61TANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjIwNDIyMDAwMDAwWhcNMjMwNDIyMjM1 OTU5WjB+MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDEjMCEG A1UEChMaVW5pdmVyc2l0ZWl0IHZhbiBBbXN0ZXJkYW0xFTATBgNVBAsTDElDVCBT ZXJ2aWNlczEbMBkGA1UEAxMSZG9tLXByZDEuaWMudXZhLm5sMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAwDC6pkdQ26wDiAkVz6Pybpx/QjnxOe+t577Y dZAu2G6cvCwXX5Ard0/zPy3kPaKd5rewppiC5VdBUZ/q7pTyg8g4DFDVaZzT0Hzp +Wx4AzkM3ZdiaSTx5Tk/J3J3kfvGaPhWrUsTYjIhv037pZ7g2eenSUz8wsTebDeU pHyukRKw07SqyVNJ1xGoRl9og9zHdI7x8MBBzYHeQ8I46Od/Ycwgbecz/MqAupaa 6+I8a4mEjPLqRjWH/du1O89PMldvF2FMmubuPkEnvGVmkCKCLKBagyFZ2UmRW6Xl AsUhKcCqLn5OCrKjbR+425VBBAZp62vhqHpoWlFFWnQ9ZLwHsDzDxXJaqfNPXAzs 4AZq/4cWylQrigMJGQX39JBuyfMNo3OgYJBi7LVGTVRBchWBIoCjYGWt4TfqvbHb HQqenK4drrS/IC5gD5Bk8yQMstM/OHp5Wq+zb/SHL21xnZYwVzbRAEct6csjR5/F aBi+FhCyPIBknQuLJhrFqAOtWDn1kdv2akEQt+FabQAsF+SnLFMs7eOo2aobw1yr m3QyH/ejwBl65cqMcgfPE6pil5MBzvP2Lp4W2HEf18q9IvtcuafPl981elOi8Pow F2cieJoat31hkNrnaX+zqJSCzGfFNzVZg03Jvnxv1jlaS92q938vD6cHuMYCJNa2 T8NdnpsCAwEAAaOCAbgwggG0MB8GA1UdIwQYMBaAFG8dNUkQbDL6WaCevIroH5W+ cXoMMB0GA1UdDgQWBBSe6gH05GzBNh2JRwQMyZ5bN1SNADAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw SQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICTzAlMCMGCCsGAQUFBwIBFhdodHRwczov L3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0 cDovL0dFQU5ULmNybC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNybDB1Bggr BgEFBQcBAQRpMGcwOgYIKwYBBQUHMAKGLmh0dHA6Ly9HRUFOVC5jcnQuc2VjdGln by5jb20vR0VBTlRPVlJTQUNBNC5jcnQwKQYIKwYBBQUHMAGGHWh0dHA6Ly9HRUFO VC5vY3NwLnNlY3RpZ28uY29tMBMGCisGAQQB1nkCBAMBAf8EAgUAMB0GA1UdEQQW MBSCEmRvbS1wcmQxLmljLnV2YS5ubDANBgkqhkiG9w0BAQwFAAOCAgEAkzcyr7UJ TCLwWwgA9v++FHGP+Pk2rnACCiR9QtP4pfLGhhBbKABk8EUq24n1TyfM60ahipKG Jq+UIPAOSxV4EJFT+jwUSeTA6LT/GJVrONr+rTAi8xBxAMVgHvqLmt1W82J2/NL6 LyaspPl9QJi0iiO7tEURbxTlnXNiQtoBJMGhAfQNwvrsPf2Mntv5djcq5Va05T9P Z2Y8Z/QDMOdCb9b6HWageGxwlsQKvitP0ocr/a9pf2+WTXzMi0sG9l4lyIOeOaKO gqh525CoLlQoFKxb699FLP1buF7zcZIbeVs31HUX+R+SvLpkxxnwm0HriIK8fVT4 s7d15zIwubx0238jxP8uyoAsMuFOPx2LQ8blec06QilqgpbAM90Lyy+x5Du1YSb6 io4J8Zzw+XCA5yzRD7Qjkj/tn7EB1Z3sL5kQkjtGgtorIwVnf/tBbWiir0eHWrWC PFdBU+hSWwVU0DTeh6zE63F5945iOjwWm7vveVBLcJMvuXuphhpIGeCJKQ+7th++ XUfZPmR3dP9+jovPs40Vn7cavI48+dbh4D3Jot1pk5O2fgbD4wTz0QoHfeohRQLJ ZialRRi4VVw4cqPqkL9o5DBXpQTlpuzoBE/hjgs9XHsoNq/K8OMKa1luyNDlSRpK MD7Gpi3C5L+RRhaCGhBpmFdCcfZo59yEB+I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwDC6pkdQ26wDiAkVz6Py bpx/QjnxOe+t577YdZAu2G6cvCwXX5Ard0/zPy3kPaKd5rewppiC5VdBUZ/q7pTy g8g4DFDVaZzT0Hzp+Wx4AzkM3ZdiaSTx5Tk/J3J3kfvGaPhWrUsTYjIhv037pZ7g 2eenSUz8wsTebDeUpHyukRKw07SqyVNJ1xGoRl9og9zHdI7x8MBBzYHeQ8I46Od/ Ycwgbecz/MqAupaa6+I8a4mEjPLqRjWH/du1O89PMldvF2FMmubuPkEnvGVmkCKC LKBagyFZ2UmRW6XlAsUhKcCqLn5OCrKjbR+425VBBAZp62vhqHpoWlFFWnQ9ZLwH sDzDxXJaqfNPXAzs4AZq/4cWylQrigMJGQX39JBuyfMNo3OgYJBi7LVGTVRBchWB IoCjYGWt4TfqvbHbHQqenK4drrS/IC5gD5Bk8yQMstM/OHp5Wq+zb/SHL21xnZYw VzbRAEct6csjR5/FaBi+FhCyPIBknQuLJhrFqAOtWDn1kdv2akEQt+FabQAsF+Sn LFMs7eOo2aobw1yrm3QyH/ejwBl65cqMcgfPE6pil5MBzvP2Lp4W2HEf18q9Ivtc uafPl981elOi8PowF2cieJoat31hkNrnaX+zqJSCzGfFNzVZg03Jvnxv1jlaS92q 938vD6cHuMYCJNa2T8NdnpsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 26460550699037462599834418748178217685 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dom-prd1.ic.uva.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 784068213335531581963903693020581344331703303570368368245640149678614774211717513616623587918155966975227178267630416046985137416289181093566966278207735449628011283963999974987015143336745701955542468711445189613031206832545643136096346377920651448181491096587010464972570849606063679984130818173441427765638123382123907271887649534505211252569439025256606677259990031747301333534877629167094389693503207947250317719105851551933065524211646336706091564910638347671846171378348665944843285021009121672604567433881188808958263606312260704499769455944112713440178437777741592328900051911209881490790306809227818298604833932589198431580286825497559873123259145096756110840050804512588706886941703791600263526977354952652337430849412668325696505127595321667809702792702048061485436468589427509221930644708010629647560377660960851600219098408041300831045123515999587630626948423359905263136351243593786364364505108625456152301685797529736311314146700227851541656198838893327240818206644881293376514224673466152462919233933253023421898231857129211237265550260266654521676686628903056177682151940108749185536670368918854850322635873836261331812078519849712565632824264595795165699170125308438814700288929378877630623068636334156898551832219 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9eea01f4e46cc1361d8947040cc99e5b37548d00 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dom-prd1.ic.uva.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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