uaccess.leidenuniv.nl
- Universiteit Leiden -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 26:19:d0:69:bd:ed:6c:b6:31:b9:e5:c5:f8:a9:be:4b was issued on by GEANT Vereniging.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit Leiden
Organization:
Universiteit Leiden
State / Province:
Zuid-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 26:19:d0:69:bd:ed:6c:b6:31:b9:e5:c5:f8:a9:be:4bSerial Number (int): 50644698380224493058215163106469461579
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 89:7a:98:3c:16:73:73:85:fb:35:48:b6:88:a9:af:b5:bc:e3:9d:b2
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): b5:10:ef:64:02:b5:ab:90:6b:a6:6b:38:40:92:3a:f6:1a:3b:0a:18
Fingerprint (sha256): 04:0f:a9:09:de:2a:c4:5d:a7:c1:0b:49:21:54:65:69:ae:e8:ff:bb:1e:05:db:14:70:53:b2:df:8f:06:d3:70
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate uaccess.leidenuniv.nl
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for uaccess.leidenuniv.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
uaccess.leidenuniv.nl
piegan1.meta.leidenuniv.nl
piegan2.meta.leidenuniv.nl
piegan3.meta.leidenuniv.nl
piegan4.meta.leidenuniv.nl
piegan1.meta.leidenuniv.nl
piegan2.meta.leidenuniv.nl
piegan3.meta.leidenuniv.nl
piegan4.meta.leidenuniv.nl
Other certificates including the domain name leidenuniv.nl
(limited to 100 certificates)
web2print.leidenuniv.nl
nmr.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
leidenlawblog.nl
scharrelaar-p1.leidenuniv.nl
cas.physics.leidenuniv.nl
ppsn2020.liacs.leidenuniv.nl
datamining.liacs.leidenuniv.nl
issc.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
lucris.leidenuniv.nl
celspin-p.issc.leidenuniv.nl
foreman-develop.infra.leidenuniv.nl
leidenuniv.nl
SALMS01.leidenuniv.nl
director1-dev.srvtest.leidenuniv.nl
uaccess.leidenuniv.nl
jira.issc.leidenuniv.nl
prosobab.leidenuniv.nl
scriptiebeoordeling-hum.leidenuniv.nl
www.math.leidenuniv.nl
Planon-BenO-t.leidenuniv.nl
login.uaccess.leidenuniv.nl
vrops-cluster.luci.leidenuniv.nl
issc.leidenuniv.nl
noah.backup.leidenuniv.nl
u-ldap-dev.srvtest.leidenuniv.nl
p-luci-001131.infra.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
socrates.leidenuniv.nl
uaccess.leidenuniv.nl
tornado-a-https.web.leidenuniv.nl
leidenuniv.nl
lacdrvirtuallab-qa.leidenuniv.nl
sapgax.issc.leidenuniv.nl
vg5.strw.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
avior.math.leidenuniv.nl
blackboardstaging.leidenuniv.nl
usis.leidenuniv.nl
strwmail.strw.leidenuniv.nl
sapeca.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
u-tools.srvtest.leidenuniv.nl
aristotle.leidenuniv.nl
sapsra.leidenuniv.nl
www.strw.leidenuniv.nl
jss.leidenuniv.nl
mail.physics.leidenuniv.nl
mysite.leidenuniv.nl
kwartel-a.leidenuniv.nl
splbs02.vuw.leidenuniv.nl
huisstijl.leidenuniv.nl
form.services.universiteitleiden.nl
wagner-p.leidenuniv.nl
pontus.lorentz.leidenuniv.nl
leidenarthistoryblog.nl
smtp.leidenuniv.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
spapp30.vuw.leidenuniv.nl
saufb01.vuw.leidenuniv.nl
schildspin-dev.issc.leidenuniv.nl
lms-wyn-disp03.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
lists.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
webdav.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
libcblog.nl
phdtrack-a.leidenuniv.nl
teams.leidenuniv.nl
evasys.leidenuniv.nl
x-ldap.leidenuniv.nl
cups.issc.leidenuniv.nl
uaccess.leidenuniv.nl
europeanbordercommunities.eu
science.leidenuniv.nl
vg5.strw.leidenuniv.nl
*.weblog.leidenuniv.nl
cms-a.universiteitleiden.nl
splic09.ilo.leidenuniv.nl
*.weblog.leidenuniv.nl
pinkashaw-o4.iam-ota.leidenuniv.nl
bankiva.leidenuniv.nl
rds-a.campus.leidenuniv.nl
phdtrack.leidenuniv.nl
planon-a.universiteitleiden.nl
jack-qa.web.leidenuniv.nl
web2print-t.leidenuniv.nl
grasparkiet.leidenuniv.nl
filosofie.leidenuniv.nl
jenkins.issc.leidenuniv.nl
www.readeronline.leidenuniv.nl
illinois.meta.leidenuniv.nl
roepieroepie-p.web.leidenuniv.nl
splms01.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
vg21.physics.leidenuniv.nl
nmr.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
leidenlawblog.nl
scharrelaar-p1.leidenuniv.nl
cas.physics.leidenuniv.nl
ppsn2020.liacs.leidenuniv.nl
datamining.liacs.leidenuniv.nl
issc.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
lucris.leidenuniv.nl
celspin-p.issc.leidenuniv.nl
foreman-develop.infra.leidenuniv.nl
leidenuniv.nl
SALMS01.leidenuniv.nl
director1-dev.srvtest.leidenuniv.nl
uaccess.leidenuniv.nl
jira.issc.leidenuniv.nl
prosobab.leidenuniv.nl
scriptiebeoordeling-hum.leidenuniv.nl
www.math.leidenuniv.nl
Planon-BenO-t.leidenuniv.nl
login.uaccess.leidenuniv.nl
vrops-cluster.luci.leidenuniv.nl
issc.leidenuniv.nl
noah.backup.leidenuniv.nl
u-ldap-dev.srvtest.leidenuniv.nl
p-luci-001131.infra.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
socrates.leidenuniv.nl
uaccess.leidenuniv.nl
tornado-a-https.web.leidenuniv.nl
leidenuniv.nl
lacdrvirtuallab-qa.leidenuniv.nl
sapgax.issc.leidenuniv.nl
vg5.strw.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
avior.math.leidenuniv.nl
blackboardstaging.leidenuniv.nl
usis.leidenuniv.nl
strwmail.strw.leidenuniv.nl
sapeca.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
u-tools.srvtest.leidenuniv.nl
aristotle.leidenuniv.nl
sapsra.leidenuniv.nl
www.strw.leidenuniv.nl
jss.leidenuniv.nl
mail.physics.leidenuniv.nl
mysite.leidenuniv.nl
kwartel-a.leidenuniv.nl
splbs02.vuw.leidenuniv.nl
huisstijl.leidenuniv.nl
form.services.universiteitleiden.nl
wagner-p.leidenuniv.nl
pontus.lorentz.leidenuniv.nl
leidenarthistoryblog.nl
smtp.leidenuniv.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
spapp30.vuw.leidenuniv.nl
saufb01.vuw.leidenuniv.nl
schildspin-dev.issc.leidenuniv.nl
lms-wyn-disp03.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
lists.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
webdav.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
libcblog.nl
phdtrack-a.leidenuniv.nl
teams.leidenuniv.nl
evasys.leidenuniv.nl
x-ldap.leidenuniv.nl
cups.issc.leidenuniv.nl
uaccess.leidenuniv.nl
europeanbordercommunities.eu
science.leidenuniv.nl
vg5.strw.leidenuniv.nl
*.weblog.leidenuniv.nl
cms-a.universiteitleiden.nl
splic09.ilo.leidenuniv.nl
*.weblog.leidenuniv.nl
pinkashaw-o4.iam-ota.leidenuniv.nl
bankiva.leidenuniv.nl
rds-a.campus.leidenuniv.nl
phdtrack.leidenuniv.nl
planon-a.universiteitleiden.nl
jack-qa.web.leidenuniv.nl
web2print-t.leidenuniv.nl
grasparkiet.leidenuniv.nl
filosofie.leidenuniv.nl
jenkins.issc.leidenuniv.nl
www.readeronline.leidenuniv.nl
illinois.meta.leidenuniv.nl
roepieroepie-p.web.leidenuniv.nl
splms01.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
vg21.physics.leidenuniv.nl
Certificate
The complete raw certificate details for uaccess.leidenuniv.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIzTCCBrWgAwIBAgIQJhnQab3tbLYxueXF+Km+SzANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwMTE4MDAwMDAwWhcNMjQwMTE4MjM1 OTU5WjBiMQswCQYDVQQGEwJOTDEVMBMGA1UECBMMWnVpZC1Ib2xsYW5kMRwwGgYD VQQKExNVbml2ZXJzaXRlaXQgTGVpZGVuMR4wHAYDVQQDExV1YWNjZXNzLmxlaWRl bnVuaXYubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDWOmmhbja/ MDfoGXGsC32JDBVMGVKH+6soy0vjEF4YQFjvUbLpAOeQ04/tLJpnNDyFVTjfFmCo xFyQrL4VxMMluK7WY0HwEdCphuH1rTn023QPFQtTrZP/0moIalgXCydna8cXEpC0 OPVH0PbIF6O3sc16r29pksSC5ESjmc2OJ6T/hqF6AeQVctTCaqmT+MZUDpv94jVT udK/3f4ytOP42VWDn3WmtNPzk7WuBWkf0Ux8KkEzZdYqTC+0Vxx8R17HRVjJZUcE twkTXOSfRHTZvAMwROeflsTw+APcuUZ8e5K9tiy/yOr61T3T0Koi31Lzjm6bPJVi RaeHvsMz2harMkdk9oic7oyDJPZRYzo8EravIoNP97HsP78oAEvF8SQFILi5sKSo iM5pOQH3oNrm6/xTfJ+lbu4ris4fXgzrIcSjY15Bc+lwgZXmpYRiVMsHmhjpZYpf EprXuJrEoxV48mDsJ/oO77HPM9tvxdX288PxFpk55+DF9Em4NEbxJVXVvSAsNJNV yEdMIQdFXxUHt2ViM3w0eMgMfs6svxIz58WOeYUzeoC6xL0ogYPFHJ2GYVJ1ltxw Yj5dHqCsQrZbSgcbT+tjRaxlxOqC7rI5tKXx86VGDHr6GRipByab/Fe7P8640ZHp BmmURH0ggIS4z6lvpzR98O402FPc1+9A8wIDAQABo4IDmzCCA5cwHwYDVR0jBBgw FoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFIl6mDwWc3OF+zVItoip r7W8452yMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUw IwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/ BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dF QU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0 cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggr BgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wggF+BgorBgEE AdZ5AgQCBIIBbgSCAWoBaAB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABhcR2afgAAAQDAEcwRQIgUvW/K1tgiekWzAiLG6N+2pD8Dy+94UcWlh5S dYhd5ZECIQDqBRR8vzgXLrwvrsNRLBWrI8Svwxm8Za5hyxxz9pmIVgB2ANq2v2s/ tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABhcR2abUAAAQDAEcwRQIgZWxB iYsTFgo6fOuRY/kxnprc/D74kKLd2sA1G9KEkhgCIQCGDZho5ERjlisVWowjALHa spXMSADw820Cyo0KSIShOwB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZx H7WbAAABhcR2aY0AAAQDAEcwRQIgG2PNERH+7gyBGeYPFOQgSxsVlaI31pRfgz37 dyBB57ECIQDm4XmTHKakh780uU6B3rqJClKzfXbNr0u0Lk7TD268QTCBkgYDVR0R BIGKMIGHghV1YWNjZXNzLmxlaWRlbnVuaXYubmyCGnBpZWdhbjEubWV0YS5sZWlk ZW51bml2Lm5sghpwaWVnYW4yLm1ldGEubGVpZGVudW5pdi5ubIIacGllZ2FuMy5t ZXRhLmxlaWRlbnVuaXYubmyCGnBpZWdhbjQubWV0YS5sZWlkZW51bml2Lm5sMA0G CSqGSIb3DQEBDAUAA4ICAQB8pjLy4Q7HuI92r+A4LR/ir49vD64UumsTAihtLQXG oQr7kLdt1+N41f5lOqs16MTfYuehrE5pRXvCQlsXjht/b4umkbslR8foFX649ihD ZECi98CXumacVOWdffxNoK2aoSaKer4zwuiBFMbUMgRlzo28DVdXfIEMmEtOzJ3N rHUJMZBdsp7/B3dlE2QYhJduKlRX9xxHxsaBt66c0Ye+a5w2eYCwLrDk3NMytvub 0rNo3hoiF4ZwvUi0c+r6PnaV386D9yg2WjMPO1ddqT2qLmSSGpxdQNCh4UL9NVY8 dEY3Ejto3luBWpD2Nljqbb+bUttKddXrS/ifVYKmZfGA4pldnPacD5szT58bC4Do HMRAGWTxRkmhJrGqBXiG5N4VV73hQK115KHc/BkjKzS6ISa/I5tU12G+t9WnYPT0 ySSLIddUKTqhqGhmUVWQM+OoZL2WxuCzabkN6Xz95fYmWIKZ+mV/FZ0P4TtwJXaf NI08zONcvINi7Dn0Ophe7CIvG/Ph/rb7AQT5CvMMOmkFwcYekHEGQxZRTU4iM8E5 MvTgdZNjOLxbmuw6MWUkxf2Mkq3kLPuDvWA67oyAQKLR6UVaiPTHkZ98xBYWhuwx XPTfcwHaJsgCynQehSuaQ9S/9e9jUCnueFueA1rTSTUsSldisH6kWZDWRSRd+Ht0 cw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1jppoW42vzA36BlxrAt9 iQwVTBlSh/urKMtL4xBeGEBY71Gy6QDnkNOP7SyaZzQ8hVU43xZgqMRckKy+FcTD Jbiu1mNB8BHQqYbh9a059Nt0DxULU62T/9JqCGpYFwsnZ2vHFxKQtDj1R9D2yBej t7HNeq9vaZLEguREo5nNjiek/4ahegHkFXLUwmqpk/jGVA6b/eI1U7nSv93+MrTj +NlVg591prTT85O1rgVpH9FMfCpBM2XWKkwvtFccfEdex0VYyWVHBLcJE1zkn0R0 2bwDMETnn5bE8PgD3LlGfHuSvbYsv8jq+tU909CqIt9S845umzyVYkWnh77DM9oW qzJHZPaInO6MgyT2UWM6PBK2ryKDT/ex7D+/KABLxfEkBSC4ubCkqIjOaTkB96Da 5uv8U3yfpW7uK4rOH14M6yHEo2NeQXPpcIGV5qWEYlTLB5oY6WWKXxKa17iaxKMV ePJg7Cf6Du+xzzPbb8XV9vPD8RaZOefgxfRJuDRG8SVV1b0gLDSTVchHTCEHRV8V B7dlYjN8NHjIDH7OrL8SM+fFjnmFM3qAusS9KIGDxRydhmFSdZbccGI+XR6grEK2 W0oHG0/rY0WsZcTqgu6yObSl8fOlRgx6+hkYqQcmm/xXuz/OuNGR6QZplER9IICE uM+pb6c0ffDuNNhT3NfvQPMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 50644698380224493058215163106469461579 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit Leiden' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uaccess.leidenuniv.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 873974700464809626814370179689298821330406826936560696631017737163428495819716561159707476663729039498344943985938827185648925407943198335669081448467023032120614650062249763190734169419748016512736963783872876070879652593541606197187527963766223974915901390367070187681963048375148648874621890568460330652378037816636938220499329821267479994607019994629023668028533073379695296701823015391164776070502178256114705547158336910057596331802217761121797289760218742417435570895460813562931575480454368762656684299108516684128193874305897746316660187115342410319117104907682943845141435892954450429083982425075610986586253191002818613660740029479316039296489775061743983939079331315333227876896469976923304036586937701439211756375732219857438313625313869667383439964215783640416224654703338297826339244825938794711933843251029429277381977341087136195750048130950637998971804818485799243419688373041119433178097646100838289356391205730309840804838417084812911221464860557606053688534348224375479588153527300028755587939963245958486155848646696918268338623734315491897006500627868550069074726415793461784754877187000904411664593141702571843422484737585419162214474654534284514209664175975413711071436883166089313896467831757422172560113907 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 897a983c16737385fb3548b688a9afb5bce39db2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (138 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uaccess.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piegan1.meta.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piegan2.meta.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piegan3.meta.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piegan4.meta.leidenuniv.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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